Microsoft Windows
[Version 6.0.6001
](C) Copyright 2006 Microsoft Corp.
c
:\windows>netsh firewall set allowedprogram ?
set allowedprogram
[ program =
] path
[ [ name =
] name
[ mode =
] ENABLE
|DISABLE
[ scope =
] ALL
|SUBNET
|CUSTOM
[ addresses =
] addresses
[ profile =
] CURRENT
|DOMAIN
|STANDARD
|ALL
]
Sets firewall allowed program configuration.
Parameters
:
program - Program path and file name.
name - Program name (optional).
mode - Program mode (optional).
ENABLE - Allow through firewall (default).
DISABLE - Do not allow through firewall.
scope - Program scope (optional).
ALL - Allow all traffic through firewall (default).
SUBNET - Allow only local network (subnet) traffic through firewall.
CUSTOM - Allow only specified traffic through firewall.
addresses - Custom scope addresses (optional).
This comma-separated scope can contain IPv4 addresses,
IPv6 addresses, subnets, ranges, or the keyword LocalSubnet.
profile - Configuration profile (optional).
CURRENT - Applies to the active profile. Active profile can be domain,
standard (i.e. private), or public. (default).
DOMAIN - Applies to the domain profile.
STANDARD - Applies to the standard (i.e. private) profile.
ALL - Applies to the domain and standard (i.e. private) profile.
Does not apply to the public profile.
Remarks
: 'scope' must be 'CUSTOM' to specify 'addresses'.
'addresses' can not contain Unspecified or Loopback addresses.
Examples
:
set allowedprogram C
:\MyApp\MyApp.exe "My Application" DISABLE
set allowedprogram C
:\MyApp\MyApp.exe "My Application" ENABLE CUSTOM
157.60.0.1,172.16.0.0/16,10.0.0.0/255.0.0.0,
12AB
:0000
:0000
:CD30
::/60,LocalSubnet
set allowedprogram program=C
:\MyApp\MyApp.exe name="My Application"
mode=DISABLE
set allowedprogram program=C
:\MyApp\MyApp.exe name="My Application"
mode=ENABLE scope=CUSTOM addresses=157.60.0.1,
172.16.0.0/16,10.0.0.0/255.0.0.0,
12AB
:0000
:0000
:CD30
::/60,LocalSubnet
