NETSH - Windows Vista / 2008

netsh » advfirewall » consec » add » rule

Microsoft Windows [Version 6.0.6001]
(C) Copyright 2006 Microsoft Corp.
c:\windows>netsh advfirewall consec add rule ?

Usage: add rule name=
     [mode=transport|tunnel (default=transport)]
     [enable=yes|no (default=yes)]
     [profile=public|private|domain|any[,...] (default=any)]
     [type=dynamic|static (default=static)]
     [port1=0-65535|any (default=any)]
     [port2=0-65535|any (default=any)]
     [protocol=0-255|tcp|udp|icmpv4|icmpv6|any (default=any)]
     [interfacetype=wiresless|lan|ras|any (default=any)]
     [auth1ca=" [certmapping:yes|no] [excludecaname:yes|no] | ..."]
     [auth1healthcert=yes|no (default=no)]
     [auth2ca=" [certmapping:yes|no] | ..."]
     [auth2healthcert=yes|no (default=no)]
        none (default=none)]


     - Rule name should be unique and cannot be "all".
     - When mode=tunnel, both tunnel endpoints must be specified and must be
       the same IP version. Also, action must be requireinrequireout.
     - At least one authentication must be specified.
     - Auth1 and auth2 can be comma-separated lists of options.
     - Computerpsk and computerntlm methods cannot be specified together
       for auth1.
     - Computercert cannot be specified with user credentials for auth2.
     - Qmsecmethods can be a list of proposals separated by a ",".
     - For qmsecmethods, integrity=md5|sha1 and
     - Qmpfs=mainmode uses the main mode key exchange setting for PFS.
     - The use of DES, MD5 and DHGroup1 is not recommended. These
       cryptographic algorithms are provided for backward compatibility
     - The default value for certmapping and excludecaname is 'no'.
     - The " characters within CA name must be replaced with \'


     Add a rule for domain isolation using defaults:
     netsh advfirewall consec add rule name="isolation"
     endpoint1=any endpoint2=any action=requireinrequestout

     Add a rule with custom quick mode proposals:
     netsh advfirewall consec add rule name="custom"
     endpoint1=any endpoint2=any

     Create a tunnel mode rule from
     subnet A (, external ip= to
     subnet B (, external ip=
     netsh advfirewall consec add rule name="my tunnel" mode=tunnel
     endpoint1= endpoint2=
     localtunnelendpoint= action=requireinrequireout

     Add a rule with CA name:
     netsh advfirewall consec add rule name="cert rule"
     endpoint1=any endpoint2=any action=requireinrequestout
     auth1=computercert auth1ca="C=US, O=MSFT, CN=\'Microsoft North,
      South, East, and West Root Authority\'"


netsh advfirewall consec add rule - Windows Vista - command Adds a new connection security rule. - Windows Vista
netsh, advfirewall, consec, add, rule, cmd, command, Windows, Vista
Quick - Link:
netsh ras diagnostics set cmtracing: Enables/disables Connection Manager logging.
netsh interface isatap show router: Shows the ISATAP router information.
netsh winsock show catalog: Displays contents of Winsock Catalog.
netsh ipsec static set policy: Modifies a policy.
netsh firewall set: Sets firewall configuration.
netsh p2p idmgr: Changes to the `netsh p2p idmgr' context.

... Home  
... Impressum
... ColorConsole

... CMD
... Netsh-XP
... Netsh-7
... Netsh-Vista
... Powershell

Download the Windows 10 Starter, Home (Basic Premium), Professional und Ultimate!

HTTP: ... cmd/en/Windows_Vista/netsh/advfirewall/consec/add/rule.htm

Switch Language in Windows-7 (change, add)?


How to make in Windows 8 or 8.1 a restart with recovery options?


Firefox Favoriten nach Windows-7 übertragen?


Wie kann ich eine BIN Image Datei brennen?