Jump to content

Powershell Blocked By Firewall


Go to solution Solved by frank419,

Recommended Posts

Posted

Hello,

 

I cannot for the life of me seem to resolve this simple issue. ESET firewall is blocking Powershell to my desktops. I have created a rule that allows port 5985 in both directions.

 

Has anyone seen this, or struggled with letting powershell through the ESET firewall?

 

Product: ESET Endpoint Security version 5.0.2228.1

  • Administrators
Posted

Does switching to learning mode for a while until all necessary rules are created automatically help?

Posted

It did not seem to help. I actually tried that first as I think that is an awesome feature. It created a rule, but when it is no longer in learning mode, my remote powershell command no longer works. I also tried duplicating the rule made by learning mode, and made it bidirectional.

  • Solution
Posted

I believe I have solved this issue. It took 2 things:

 

  1. Create a program rule for powershell_ise.exe
  2. Create a rule allowing port 9389 since my PS script check active directory

Using the firewall log helped be get to the bottom of this. I will have to lean on it more, what a great log!

  • 4 weeks later...
Posted

I believe I have solved this issue. It took 2 things:

 

  1. Create a program rule for powershell_ise.exe
  2. Create a rule allowing port 9389 since my PS script check active directory

Using the firewall log helped be get to the bottom of this. I will have to lean on it more, what a great log!

 

What exactly did your log show you, we have this exact same problem, we have ever port under the sun open and have it opened by application nothing fixes this issue.  If we disable the firewall for ten minutes, we can connect for ten minutes.  If the firewall is enabled, not only does the attempt to connect to the machine with powershell fail, it does not even generate a log entry.  If you try to verify that the ports have been opened on the machine the profile was applied too, the ports do not show up in netstat -aon, or in the ESET SysInsepctor.  Someone please point me in the direction of where I can find what exactly the firewall is doing when it is on versus when it is off, because we cannot find an explanation internally we our at a loss.

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...