Learn how to apply firewall rules on Windows.
To best protect your system, your Windows Server dedicated server has its own built-in firewall. By configuring it, you can increase security levels, which guarantees the availability and integrity of all elements hosted on the server, such as roles, services, and shared folders.
- A dedicated server with Windows installed in your OVHcloud account
- Administrative access via remote desktop to your server
Step 1: Access Windows Firewall
To access Windows Firewall, you can follow this order:
- Search for "Windows Firewall" in the search bar.
Step 2: Enable an inbound rule
In the window that appears, you will see settings such as:
- Inbound and Outbound Rules
- Connection Security Rules
- Server Firewall Monitoring Options
Inbound Rules displays all preconfigured Windows Server rules associated with network connections and incoming packets. Some of these rules are not enabled by default. If you want to enable them, right-click the rule and select the
Enable rule option.
Step 3: Create a new rule
To create a new rule, go to the
Action menu and select
New Rule. Click the
New Rule option in the right-hand pane.
Step 4: Define the type of rule to activate
The Rule Wizard provides options to define the type of rule to create. Select the
Port check box.
Step 5: Define the port type to activate
In the next step, define the port type to enable:
TCP (Transmission Control Protocol) It is a connection-orientated protocol, i.e. with TCP, it will be possible to create connections between them to send data streams. This protocol ensures that data is delivered to the recipient in the same order and the same error-free manner.
UDP (User Datagram Protocol) This is a non-connection-orientated protocol. Its development is based on the exchange of datagrams and facilitates the sending of datagrams across the network. You will need to have established a connection to the destination beforehand.
You can also select the
All local portscheckbox to enable all TCP or UDP ports on a non-secure server. You can also select the
Specific local portscheck box to determine which port should be allowed.
Step 6: Allow or block the connection
To define the action this rule will trigger, the following options are available. Select the one that works for you.
- Allow the connection. This option allows full communication through this port.
- Allow the connection if it is secure. This option allows data to be transmitted only if the connection is authenticated via IPsec.
- Block the connection. This option prevents data from being routed through this port.
Allow Connection option and click
Step 7: Define the firewall profile and name to apply
Finally, you must choose which profiles the rule should apply to, public, domain, or private. You can enable them all if you want.
Give the new rule a name and description (optional) to make it easier to use.
Finish button to complete the process and create the new rule.
You can then make changes to the settings of the new rule you have created.