Configuring inbound and outbound connections in Windows firewall

Support

Support for business applications

Kaspersky Security 11.x for Windows Server

Network Attached Storage Protection

Configuring inbound and outbound connections in Windows firewall

June 10, 2022

ID 147235

Save as PDF

The names of settings may vary under different Windows operating systems.

To configure inbound and outbound connections in Windows firewall:

Open the settings window of Windows firewall in one of the following ways:
- If you configure Windows firewall locally, click the Start button, enter the wf.msc command at the search bar, and press ENTER.
- If you configure Windows firewall from another computer:
  1. Click the Start button, enter the mmc command at the search bar, and press ENTER.
    The Management Console window opens.
  2. In the window that opens, select File > Add or remove a snap-in.
    The Add or remove snap-ins window opens.
  3. In the list of available snap-ins, select the Firewall with Advanced Security snap-in and click the Add button.
    The Select computer window opens.
  4. In the window that opens, select Another computer and specify a server with Kaspersky Security for Windows Server installed, using one of the following methods:
    - In the entry field, specify the domain name of a server with Kaspersky Security for Windows Server installed.
    - Click the Browse button and, in the integrated security subject selection window that opens, select a server with Kaspersky Security for Windows Server installed, using search by domain or by workgroup.
  5. Click OK.
    The changes will be saved.
Create rules for inbound and outbound connections with the following settings:
- Allow inbound connections from all remote ports to local ports TCP 137 – 139, TCP 445.
- Allow outbound connections from all local ports to remote ports TCP 137 – 139, TCP 445.
  If all outbound connections are denied, open the following ports: TCP 443 (RPC(HTTP)), TCP 445 (SMB), TCP 88 (Kerberos), TCP 53 (DNS), UDP 53 (DNS).
  
  By default, Windows firewall allows all inbound connections for which no denying rules have been set. If the default settings are applied, no rule should be created for outbound connections.

The Windows firewall settings can also be defined by a group or domain policy.

Kaspersky Security for Windows Server: Prompt detection of all kinds of threats

Launch control and exploit prevention for businesses of all sizes. Buy as part of Endpoint Security for Business Advanced.

Kaspersky Premium Support (MSA): High‑priority incident processing

Telephone and web ticket support. Fast response, monitoring and health check. Submit a request and activate the contract (MSA).

Did you find this article helpful?

What can we do better?

Thank you for your feedback! You're helping us improve.