Endpoint Protection firewall prerequisites to deploy clients via Group Policy (Malwarebytes)

0
(0)

Before you can deploy clients from the Malwarebytes Nebula platform, you must configure your Group Policy’s (GPO) firewall.

Here is a list of firewall prerequisites:

  • Open ports 135, 137, and 445
  • Enable Windows Management Instrumentation (WMI)
  • Enable Remote Procedure Call (RPC)

Follow the steps in this article to configure Windows Firewall.

Alternatively, use the Command Prompt to configure the above prerequisites. Execute the following commands on each endpoint experiencing installation errors.

Command for Windows XP, Vista, and 7

netsh firewall set service RemoteAdmin enable

Commands for Windows 8, 8.1, and 10

netsh advfirewall firewall set rule group=”remote administration” new enable=yes
netsh advfirewall firewall set rule group=”Windows Remote Management” new enable=yes
netsh advfirewall firewall set rule group=”windows management instrumentation (wmi)” new enable=yes

Configure Windows Firewall

Step 1: Open Domain Profile settings

  1. Click the Start menu.
  2. To open GPMC, type Group Policy Management and press Enter.
    • For Windows Server 2008 R2 and older operating systems, type gpmc.msc.
  3. Under Group Policy Management, double-click Forest.
  4. Double-click Domains to view your domain.

    DOC-2895-1.jpg

  5. Under your domain, right-click Default Domain Policy and click Edit….

    DOC-2895-2.jpg

  6. Go to Computer Configuration > Policies > Administrative Templates Network > Network Connections > Windows Firewall > Domain Profile.

    DOC-2895-3.jpg

Step 2: Add ports 135, 137, and 445

  1. Double-click Windows Firewall: Define inbound port exceptions.
    DOC-2895-4.jpg
  2. Select Enabled.
    DOC-2895-5.jpg
  3. In the same window under Options:, click Show.
    DOC-2895-6.jpg
  4. When the Show Contents window appears, under the Value column, enter 135137, and 445.
    DOC-2895-7.jpg
  5. Click OK.
  6. On the Windows Firewall: Define inbound port exceptions window, click Apply > OK.
    DOC-2895-8.jpg

Step 3: Enable WMI and RPC

  1. From the Group Policy Management Editor window, double-click Windows Firewall: Allow inbound remote administration exception.
    DOC-2895-9.jpg
  2. On the Windows Firewall: Allow inbound remote administration exception window, click Enabled > Apply > OK.
    DOC-2895-10.jpg

    DOC-2895-11.jpg

  3. Double-click Windows Firewall: Allow inbound file and printer sharing exception.
    DOC-2895-12.jpg
  4. On the Windows Firewall: Allow inbound file and printer sharing exception window, click Enabled > Apply > OK.
    DOC-2895-13.jpg

    DOC-2895-14.jpg

After completing all three steps, you can use the Malwarebytes Nebula platform to deploy Malwarebytes to your Endpoints.

Source : Official Malwarebytes Brand
Editor by : BEST Antivirus KBS Team

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

(Visited 19 times, 1 visits today)
Tagged: