Our web server is Windows Web Server 2008 R2. I added a new rule in Windows Firewall with Advanced Security Inbound rules.
I have successfully created a rule to block all IP addresses to access port number 1433 to our web server. It is blocking our office IP too. I have been looking for the setting where I can put our office's IP address to exception list. There is Exceptions in Computers tab but it is a list of windows user, not IPs.
Is there anyway we can add IP address to exception rule from "Block Rules"?
FYI:
I understand from this page, http://technet.microsoft.com/en-us/library/cc755191%28v=ws.10%29.aspx, that the block rules come first and it activate allow rules.
I created a new rule to allow our office IP on port 1433 but it is still blocking us on that IP. To make sure if the rule works, I changed it to "Any IP" in allow rule, it doesn't work either.
Is it true that it blocks first and allows next?
Thanks
Best Answer
Yes that is true, delete the rules you created, including your block all rule. Create a new allow rule and only allow traffic on that port from a specific remote IP, then specify your office IP.
Its a little bit tricky. But Windows firewall will actually blocks all traffic by default. So you just need to add the rule above.