Production-tested. Partner links.
🛸 Proton VPN – Encrypted tunnel
🔐 Proton Pass – Zero-knowledge vault
🦑 GitKraken Pro – Visual Git client
🐧 Linux Foundation – Code: VALDEMAR
Enable Logging in Windows Firewall
By Vladimir Mikhalev · Solutions Architect · Docker Captain · IBM Champion
This article is for those looking for a detailed and straightforward guide on installing enable logging in Windows Firewall.
WARNINGFor security reasons, it is not recommended to disable Windows Firewall unless you are using a complete antivirus solution that includes a different firewall. In the case when Windows Firewall blocks the operation of an application, you need to study this event in detail using a file with logs and make an allowing rule for this application in Windows Firewall, if it is really necessary.
NOTEThis tutorial will cover several ways to enable logging in to Windows Firewall.
We go into the system under an account with administrator rights.
Open Server Manager, click on the “Tools” button in the upper right corner of the screen and select “Windows Firewall with Advanced Security”.
Next, right-click on “Windows Firewall with Advanced Security on Local Computer” and select “Properties”.
NOTEIn this guide, logging in Windows Firewall for a domain profile will be configured. Similarly, you can configure logging for other profiles.
On the “Domain Profile” tab, in the “Logging” section, select “Customize”.
Further, in the “Name” field, you can specify where the file with the Windows Firewall logs will be stored.
In the “Size Limit” field, specify the maximum size of the file with logs.
To enable logging of dropped packets, select “Yes” in the “Log dropped packets” section.
Click on the “OK” button.
You can also enable logging in to Windows Firewall using Windows PowerShell.
On the keyboard, press the key combination “Win” and “x” and in the menu that opens, select “Windows PowerShell (Admin)”.
NOTEIn this guide, logging in Windows Firewall for a domain profile will be configured. Similarly, you can configure logging for other profiles.
We enable logging using the command:
Set-NetFireWallProfile -Profile Domain -LogBlocked True -LogMaxSize 4096 -LogFileName "%systemroot%\system32\LogFiles\Firewall\pfirewall.log"
Now, looking at the file with the logs, you can examine in detail which application was blocked using Windows Firewall, and make an allow rule for it if it is really necessary.
Related Posts
- 1Recovering a Corrupt Exchange Database with Stellar Repair — Real-World Lab TestSysAdmin & IT Pro · We deliberately broke an Exchange 2019 server to see if Stellar Repair for Exchange could recover a dirty-shutdown EDB file. Step-by-step recovery process, lab setup, and lessons learned.
- 2Distinctions Between Terminal, Command Line, Shell, and PromptSysAdmin & IT Pro · Learn the differences between terminal, command line, shell, and prompt in Linux. A beginner-friendly guide to essential CLI concepts and tools.
- 3Install Ubuntu Server 22.04 LTSSysAdmin & IT Pro · Step-by-step guide to install Ubuntu Server 22.04 LTS. Covers language, disk setup, OpenSSH, user creation, and system configuration for beginners.
- 4Install OTRS on Ubuntu ServerSysAdmin & IT Pro · Comprehensive guide to installing OTRS Community Edition on Ubuntu Server. Learn to configure PostgreSQL, Apache, SSL with Let's Encrypt, and launch OTRS securely.
Random Posts
- 1Install Ubuntu Server 22.04 LTSSysAdmin & IT Pro · Step-by-step guide to install Ubuntu Server 22.04 LTS. Covers language, disk setup, OpenSSH, user creation, and system configuration for beginners.
- 2Install Nextcloud Using Docker ComposeSelf-Hosting · Complete guide to installing Nextcloud with Docker Compose and Traefik. Learn to deploy your own secure file sharing and collaboration cloud with HTTPS.
- 3Install Outline and Keycloak Using Docker ComposeSelf-Hosting · Deploy Outline with Keycloak SSO, Traefik, and MinIO on Ubuntu using Docker Compose. A complete, secure wiki setup with SSL, access control, and cloud storage.
- 4Install GLPI Using Docker ComposeSelf-Hosting · Learn how to install GLPI using Docker Compose with Traefik and Let's Encrypt. Set up your open-source IT asset management and service desk system step-by-step.