Learn how to apply firewall rules on Windows.
To best protect your system, your Windows Server dedicated server has its own built-in firewall. By configuring it, you can increase security levels, which guarantees the availability and integrity of all elements hosted on the server, such as roles, services, and shared folders.
Requirements
- A dedicated server with Windows installed in your OVHcloud account
- Administrative access via remote desktop to your server
Instructions
Step 1: Access Windows Firewall
To access Windows Firewall, you can follow this order:
- Click
Start
. - Click
Search
. - Search for "Windows Firewall" in the search bar.
- Click
Windows Firewall
.
Then click Advanced settings
.
Step 2: Enable an inbound rule
In the window that appears, you will see settings such as:
- Inbound and Outbound Rules
- Connection Security Rules
- Server Firewall Monitoring Options
Selecting Inbound Rules
displays all preconfigured Windows Server rules associated with network connections and incoming packets. Some of these rules are not enabled by default. If you want to enable them, right-click the rule and select the Enable rule
option.
Step 3: Create a new rule
To create a new rule, go to the Action
menu and select New Rule
. Click the New Rule
option in the right-hand pane.
Step 4: Define the type of rule to activate
The Rule Wizard provides options to define the type of rule to create. Select the Port
check box.
Step 5: Define the port type to activate
In the next step, define the port type to enable:
-
TCP (Transmission Control Protocol) It is a connection-orientated protocol, i.e. with TCP, it will be possible to create connections between them to send data streams. This protocol ensures that data is delivered to the recipient in the same order and the same error-free manner.
-
UDP (User Datagram Protocol) This is a non-connection-orientated protocol. Its development is based on the exchange of datagrams and facilitates the sending of datagrams across the network. You will need to have established a connection to the destination beforehand.
You can also select the
All local ports
checkbox to enable all TCP or UDP ports on a non-secure server. You can also select the Specific local ports
check box to determine which port should be allowed.
Step 6: Allow or block the connection
To define the action this rule will trigger, the following options are available. Select the one that works for you.
- Allow the connection. This option allows full communication through this port.
- Allow the connection if it is secure. This option allows data to be transmitted only if the connection is authenticated via IPsec.
- Block the connection. This option prevents data from being routed through this port.
Select the Allow Connection
option and click Next
.
Step 7: Define the firewall profile and name to apply
Finally, you must choose which profiles the rule should apply to, public, domain, or private. You can enable them all if you want.
Give the new rule a name and description (optional) to make it easier to use.
Click the Finish
button to complete the process and create the new rule.
You can then make changes to the settings of the new rule you have created.
Go further
For more information and tutorials, please see our other Dedicated Server support guides or explore the guides for other OVHcloud products and services.