Vista Forums - View Single Post - Might be a good idea to disable Windows Firewall altogether when in an Active Directory Domain

09-28-2006

"Richard G. Harper" <rgharper@email.com> wrote in message
news:%23VlL%23Yu4GHA.772@TK2MSFTNGP02.phx.gbl...
> No IPSec, and all forms of name resolution (NetBIOS, WINS and DNS) are
> supported.
>
I do not use NetBIOS/WINS, due to security risks as wells as not necessary
(no Win9x or NT boxes in my domain). I IPSec encrypt ALL SMB/CIFS port 445
traffic using PKI authentication. As I said before, it takes a few boots to
get it right when I had RC 1 5600; for 5728 I just disabled the firewall at
first then re-enabled it. Having custom GPOs for Wista will help in the
future.

09-28-2006	#6 (permalink)
Edward Ray n/a posts	Re: Might be a good idea to disable Windows Firewall altogether when in an Active Directory Domain "Richard G. Harper" <rgharper@email.com> wrote in message news:%23VlL%23Yu4GHA.772@TK2MSFTNGP02.phx.gbl... > No IPSec, and all forms of name resolution (NetBIOS, WINS and DNS) are > supported. > I do not use NetBIOS/WINS, due to security risks as wells as not necessary (no Win9x or NT boxes in my domain). I IPSec encrypt ALL SMB/CIFS port 445 traffic using PKI authentication. As I said before, it takes a few boots to get it right when I had RC 1 5600; for 5728 I just disabled the firewall at first then re-enabled it. Having custom GPOs for Wista will help in the future.
My System Specs