Below is how the rules will look inside Windows Firewall. I would update them about Once a Month if you are experiencing attacks. That’s it we are done… I suggest you keep your zone files so that you can update them easy by overwriting them. Type without quotes “PowerShell.exe -ExecutionPolicy Restricted”. Step 7: Just for precaution let’s now set PowerShell back to Restricted Access on Scripts. \Import-Firewall-Blocklist.ps1 -inputfile Option 1: Import-Firewall-Blocklist.ps1 -inputfile If Option 1 does not execute then use Option 2. Option 1 is for Older Versions of PowerShell. Step 6: Begin entering the Zones into your Windows Firewall. Step 5: Type without quotes “PowerShell.exe -ExecutionPolicy Bypass” – This will set the scripts Policy of PowerShell to run so that it can make the Windows Firewall Rules. Step4: Run PowerShell as Administrator (right click PowerShell and select Run as Administrator). KOREA, DEMOCRATIC PEOPLE’S REPUBLIC OF (KP) (save as ).Optionally you can grab the larger lists (on the left) but, the aggregated zones are based on activity. Right click and save that file to your C:\ip-security directory using a basic format, THIS IS IMPORTANT.Įxample: Save China as so that if you update the zone file it will remove any Old Rules that are created. Click them on them and you will see a list of IP’s. To the Right of each list grab the “aggregated zone file” for each country. Step 3: Go to and download the IP Tables in CIDR Format of the countries that you do not want accessing your windows system at all. Step 2: Download the PowerShell script Import-Firewall-Blocklist.ps1 from and extract the PowerShell script Import-Firewall-Blocklist.ps1 to your C:\ip-security folder. Step 1: Create a directory for working with PowerShell and PowerShell Scripts. Windows Firewall can be used to solve this situation in a very easy manner using distributed country IP Tables and PowerShell.īelow is a tutorial I wrote explaining the process: How to Block County IP’s in Windows Firewall with PowerShell I get a lot of clients asking me what they can buy for protecting themselves from countries they don’t want connecting to their office or home network since they have no business with these countries and the threat they pose in hacking.Ī simple and “zero cost” solution already exists with their Windows system.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |