Client side firewall via GPO question

Similar Messages

• Client side Information via Web

  Anyone have any experience in accessing client side information
  via Web Forms. I need to pull user info from their machine vice
  the server, which is actually running the form.
  null

  Jeffrey Porter (guest) wrote:
  : I'm looking for information on how to construct the link
  between
  : the web server and the database such that the client is not
  : required to establish the database link. Everything is server
  : side with the client passing in values via web submits and
  : information returned via constructed HTML. I think the reason
  : this is all constructed this way is to fit into the JAVA
  security
  : model for web based application processes. I have constructed
  : the JDBCODBC bridging with the client making the dattabase
  : connection but now I want the connection shifted from the
  client
  : to the server.
  (1) In your system there are 3 nodes. The first one is the web
  client running a browser posting HTTP request to your web server.
  Your web server is a server to the web client but also a client
  to your Oracle database server. From the web client browser you
  cannot communicate directly with the Oracle server directly
  through JDBC. Your CGI scripts (you have not specified what web
  scripting tool you are using) written in Java may communicate
  with your Oracle database using the JDBC drivers available in
  your $ORACLE_HOME/jdbc/lib/classes111.zip file.
  (2) You do not need any JDBC-ODBC bridge to access Oracle
  databases. You should use the Oracle JDBC drivers.
  NM
  null

• Setting port exceptions for Windows Firewall via GPO. Is there a limit on the number of exceptions that can be set?

  We would like to utilize GPOs to manage our Windows Firewall rule set. We have servers that have different requirements (HL7 connections, other programs) and our doctrine is to only open ports that are going to be used.
  We need to be able to audit and enforce these standards, so GPOs seem to make the most sense to me.
  The problem I am running into is when I attempt to define multiple Windows Firewall Inbound Port Exceptions. (More than 10) After "Applying and Okaying" I will go to verify the firewall rule-set but I find that quite a few of them are missing. It
  seems like I am limited to 8-9 port exceptions per GPO.
  I am unable to locate any documentation about this, but we can work around this by creating multiple GPOs. 
  Has anyone run into this issue before?
  Domain Function level: Windows Server 2008
  Tho H. Le

  > Has anyone run into this issue before?
  No, unfortunately. Our main server FW exception GPO contains 44 rules
  with port or program exceptions, and it works flawlessly...
  Martin
  Mal ein
  GUTES Buch über GPOs lesen?
  NO THEY ARE NOT EVIL, if you know what you are doing:
  Good or bad GPOs?
  And if IT bothers me - coke bottle design refreshment :))

• Client side RSO send function questions

  I'm using the send method to send a  message from server to client wich is all fine and dandy but the problem is if i try to call another function from the called function it doesn't execute here is some code to demonstrate it......is the function out of scope of the rest of the application or something since it was executed by the FMS server? I'm sure the function i'm calling works becuase it works from outside the send  called fuctions
  public function StopTimer():void{
  timekeeper1.stopTicking();
  trace("stopped ticking");

  If you're using AS3, the scope of the function is the client object of the SharedObject. To handle getting events out to classes outside that scope, I like to write a class that extends eventdispatcher, and use an instance of that class as the SharedObject's client. Something along the lines of
  class SOClient extends EventDispatcher{
  public function SOClient(){
  public function stopTimer(){
  dispatchEvent(new Event("STOP"));
  Then, I'll set up my app like so:
  var soClient:SOClient = new SOClient();
  soClient.addEventListener("STOP", stopHandler);
  var so = SharedObject.getRemote(blah, blah, blah);
  so.client - soClient;
  function stopHandler(e:Event){
       timekeeper1.stopTicking();

• Form2email - cgi2email question (client side only forms sent via email?)

  I am being asked to design a standard questionnaire form.
  They want
  the answers to the form be emailed.
  However, they host their own pages on a microsoft-based
  server that
  has no perl library, VB library, etc.
  Is there a way to do a form and generate an email totally on
  the
  client side with no server based application needed
  whatsoever?
  Thanks,
  -Dan

  You can create a simple mailto: link on the form that will
  invoke the client
  mail program but it is not that reliable. However if they are
  hosting using
  IIS it does have built in mail capability via CDO using an
  ASP page, or it
  can be set up to run ASP.Net with its mail handling scripts.
  Paul Whitham
  Certified Dreamweaver MX2004 Professional
  Adobe Community Expert - Dreamweaver
  Valleybiz Internet Design
  www.valleybiz.net
  "Canned Heat" <[email protected]> wrote in message
  news:[email protected]..
  >I am being asked to design a standard questionnaire form.
  They want
  > the answers to the form be emailed.
  >
  > However, they host their own pages on a microsoft-based
  server that
  > has no perl library, VB library, etc.
  >
  > Is there a way to do a form and generate an email
  totally on the
  > client side with no server based application needed
  whatsoever?
  >
  > Thanks,
  > -Dan
  >

• Disable Firewall for Windows 8.1 in Domain Location Network Settings via GPO

  I have Clients OS XP, 7, 8 and 8.1 Now I want disable only 8.1 firewall automatic via GPO. It's possible to apply only Windows version purpose with out any group and OU.
  Md. Ramin Hossain

  Hi Md,
  In addition to Carl's suggestions, regarding how to create queries for a specified version of Windows, the following article can be referred to for more information.
  Create WMI Filters for the GPO
  http://technet.microsoft.com/en-us/library/jj717288.aspx
  TechNetSubscriber Support
  If you are TechNetSubscription user and have any feedback on our support quality, please send your feedback here
  Best regards,
  Frank Shen

• XSL Fragment into HTML via Client-Side Transform

  I am designing a site for a school. I searched and found the
  post here from July 25, and I have also read the Dreamweaver
  help file till I'm blue in the face. They talk all around the
  answer but never definitively say if it's possible to do this.
  Dreamweaver help mentions:
  -- Workflow for performting client-side xsl transformations
  Do one of the following:
  In your Dreamweaver site, create an entire XSLT page. See
  Creating entire XSLT pages.
  Convert an existing HTML page to an entire XSLT page. See
  Converting HTML pages to XSLT pages.
  All the online tutorials show server-side transforms but I'm
  not skilled in that...nor do I know if the hosting entity will
  provide that level of access to their .NET server.
  ---- ok. that's the background of the situation. Now to my
  problem. ---
  We plan to have two mutually exclusive areas on the home
  page, such as news & events, that will be updated by a single
  school employee. The plan is to create two XML text files that one
  teacher can update.
  The XMLfiles will be manually uploaded to the web site and
  the home page will read that data into properly formatted
  information on the home page. I would greatly prefer to keep the
  entire process as a client-side procedure.
  I have created and linked XSL fragments to the XML data.
  If I try to copy and paste code from the XSL fragment into
  the index HTML page, I get nothing.
  Success comes only after converting the home page into an
  XSLT 1.0 file using Dreamweaver and copying and pasting the code
  fromt he XSL file into the newly created XSLT file.
  Hence my questions:
  1 Can I bring these XSL fragments into an HTML home page or
  do I have to convert it to XSLT?
  2. If I must convert the HTML file to an XSLT file, can
  people still type the website address in as www dot site dot com
  and the XSLT file will open without anyone knowing the difference?
  3. Can I even do this with a client-side transform?
  4. Is it possible for one page to reference two separate XSL
  fragments pointing to the two separate respective XML files?
  Thank you very much for your help.

  Hi Eric,
  these are the cache control headers of the request that serves the XSLT:
  GET http://www.carsten-leue.de/test/iframe_xslt/xslt.php HTTP/1.1
  Accept: */*
  Referer: http://www.carsten-leue.de/test/iframe_xslt/xslt.php
  Accept-Encoding: gzip, deflate
  User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; Trident/7.0; rv:11.0) like Gecko
  Host: www.carsten-leue.de
  DNT: 1
  Connection: Keep-Alive
  There does not seem to be a header involved that prevents caching.
  You mention the "legacy ActiveX" control. In which sense is this control involved in the usecase? In my scenario I am pointing the browser to the XML document that has an associated stylesheet and the browser automatically executes the transform.
  I am not explicitly triggering the transform via some script in the page.
  Does the ActiveX control still play a role in this scenario?
  Carsten

• Installing client via gpo vs client push?

  hello all
  When it comes to pushing the sccm 2012 client does anyone have any thoughts on the pros and cons of pushing via gpo? We are exploring this as an option. We used client push in the past but wanted to give group policy a try. Just as a side note the sccm 2012
  client is already on all of our clients and servers from a previous failed site deployment. So this would be a new client (same version CM12) and a different site code.
  Thanks in advance!
  Phillip
  Phil Balderos

  Hi,
  I like to use Jason Sandys excellen startup script is executed as an startup script.. it provides much more control and many more features than using the .adm files which ships with SCCM 2012.
  Compared to Client push there are many advantages as well, you don't have to open all the ports on the client, the script provides more features like wmi-check. It is a great resource.
  http://blog.configmgrftw.com/configmgr-client-startup-script/
  Regards,
  Jörgen
  -- My System Center blog ccmexec.com -- Twitter
  @ccmexec
  Thanks guys!
  Since the client is already installed on each computer with the old site code how will the install behave considering that piece?
  Phil Balderos

• Load data from File on Client side (via Sqlplus)

  Server OS: RedHat, Oracle 10g rel 2.
  I am trying to load data from OS .txt files to clob field.
  I am able to do this successfully using:
  Oracle DIRECTORY
  BFILE
  DBMS_LOB.loadclobfromfile packageIssue is: this only works if my files and DIR are on database server.
  Is it not possible "load clob from file" from client side, files being on client and exec command via SQLPlus. Is there any other option to load data from client side.
  Thanks for any help.

  Options:
  1) Search for OraDAV
  2) Learn about Application Express.

• GPO on Client side VPN

  Hi,<o:p></o:p>
  I am facing problem while updating Group policy to client side VPN user system, I have opened default ports related to GPO, Still GPO is not getting updated. Microsoft article advised that dynamic
  ports range 49152 - 65535 need to open. Due to security concern we unable to open these huge range of ports. Finally GP update command is working by opening these two ports 49159 and 49157. but GP update /force command is still not working. <o:p></o:p>
  Kindly advice which ports need to be opened for GP update /force.<o:p></o:p>
  Secondly I need to get VPN connected before user logged in. otherwise i hope GP update command will not serve the purpose. Software need to be assigned to the user by using GP update from the
  update server/domain controller.<o:p></o:p>
  Please advise if there is any solution for this case.<o:p></o:p>
  Regards,<o:p></o:p>
  Raj. <o:p></o:p>

  Hi JeraldRaj,
  If all your intranet computer get GPO properly, it may your VPN computer using the Slow Link GPO , When your client is applying its Group Policies and it detects that the
  available bandwidth between it and the Domain Controller is less than 500 kb (default value), it will only download and apply those settings within the GPO that are considered mandatory.
  The settings that are not downloaded when a slow link is detected include the following:
  •Disk Quota
  •Scripts
  •Folder Redirection
  •Software Installation
  •Wireless Network (IEEE 802.11) Policies
  •Wired Network (IEEE 802.3) Policies
  •Internet Explorer Maintenance Extension
  The related aritlce:
  GPOs and Slow Link Detection
  http://blogs.technet.com/b/musings_of_a_technical_tam/archive/2012/02/27/gpos-and-slow-link-detection.aspx
  “Configure slow-link mode” policy on Vista for Offline Files
  http://blogs.technet.com/b/askds/archive/2009/02/11/configure-slow-link-mode-policy-on-vista-for-offline-files.aspx
  The related KB:
  Specifying Group Policy for Slow Link Detection
  http://technet.microsoft.com/en-us/library/cc781031(v=ws.10).aspx
  Hope this helps.
  We
  are trying to better understand customer views on social support experience, so your participation in this
  interview project would be greatly appreciated if you have time.
  Thanks for helping make community forums a great place.

• Client Migration from SCCM 2007 to SCCM 2012 via GPO

  what
  installation properties i can use to migrate client from sccm 2007 to sccm 2012 via gpo?
  Thanks!!
  Atenciosamente Julio Araujo

  It all depends on your needs, I suggest that you look at this first :
  All properties can be set by using GPO, it's not different from push.
  http://technet.microsoft.com/en-us/library/bb632469.aspx
  http://technet.microsoft.com/en-us/library/bb633010.aspx
  http://social.technet.microsoft.com/wiki/contents/articles/25118.deploying-sccm-2012-r2-clients-using-group-policy.aspx
  Benoit Lecours | Blog: System Center Dudes

• Migrating Clients from SCCM 2007 to SCCM 2012 R2 via GPO

  Hello. 
  I can do the migration of customers from SCCM 2007 to SCCM 2012 via GPO? 
  When I'm migrating customers from SCCM 2007 to SCCM 2012 I have to keep the boundaries of SCCM 2007 or just the SCCM 2012?
  Atenciosamente Julio Araujo

  For migrating the clients you can use any client deployment method that's available (see for planning your strategy: (http://technet.microsoft.com/en-us/library/gg712283.aspx).
  During the client migration I would also start with migrating your boundaries. The most important thing is that you have no overlapping boundaries for site assignment when you are using auto assignment.
  My Blog: http://www.petervanderwoude.nl/
  Follow me on twitter: pvanderwoude

• JDeveloper 11g - JSF Custom Validator - Client Side validation question...

  Hi all,
  I've created custom JSF validator.
  How to trow some client side ValidatorException in javascript?
  Thanks in advance,
  s o v i e t

  Try
  throw new TrValidatorException(
  null,
  summary,
  detail
  Frank

• Question on client side authentication

  Does anyone have recommendation for a good way to do client side
  authentication in a java application and pass it through to the application
  server for RMI calls? I can use JAAS to authenticate the user on the client
  side but how do I get the user principal to pass through to the weblogic
  server as part of the RMI call.
  Kent

  You can check out both JAAS and JNDI authentication for weblogic in this link:
  http://edocs.bea.com/wls/docs61/security/prog.html#1022997
  "Kent Mitchell" <[email protected]> wrote:
  Does anyone have recommendation for a good way to do client side
  authentication in a java application and pass it through to the application
  server for RMI calls? I can use JAAS to authenticate the user on the
  client
  side but how do I get the user principal to pass through to the weblogic
  server as part of the RMI call.
  Kent

• Client-Side Cache Question

  Let's say I have a FLV that "lives" on a server, and I serve
  it up through, say, Ruby. The Ruby script takes care of obtaining
  the FLV from the filesystem and renders it to the browser.
  Inside my client-side SWF, my code to connect to the Ruby
  application and get the FLV may look like this:
  var nc:NetConnection = new NetConnection();
  nc.connect(null);
  var ns:NetStream = new NetStream(nc);
  tvid.attachVideo(ns);
  ns.setBufferTime(2);
  statusID = setInterval(videoStatus, 200);
  ns.onStatus = function(info) {
  trace(info.code);
  if(info.code == "NetStream.Buffer.Full") {
  bufferClip._visible = false;
  ending = false;
  clearInterval( statusID );
  statusID = setInterval(videoStatus, 200);
  if(info.code == "NetStream.Buffer.Empty") {
  if ( !ending ) {
  bufferClip._visible = true;
  if(info.code == "NetStream.Play.Stop") {
  bufferClip._visible = false;
  //ending = true;
  if(info.code == "NetStream.Play.Start") {
  ending = false;
  if(info.code == "NetStream.Buffer.Flush") {
  ending = true;
  //Play it
  ns.play("
  http://localhost:3000/stream");
  ==============
  It seems to me that the "decision" of whether or not to cache
  is entirely dependent on the access method within the client-side
  SWF. So, if in this case, I'm using NetStream to stream the video,
  will it still be cached on the client end? Or do I -have- to use
  FMS to prevent client caching - and if so, why? How does FMS
  prevent the client from caching the data (isn't it up to the client
  to delete the data bits after they're viewed?)
  Thanks a bunch for the help.

  Let's say I have a FLV that "lives" on a server, and I serve
  it up through, say, Ruby. The Ruby script takes care of obtaining
  the FLV from the filesystem and renders it to the browser.
  Inside my client-side SWF, my code to connect to the Ruby
  application and get the FLV may look like this:
  var nc:NetConnection = new NetConnection();
  nc.connect(null);
  var ns:NetStream = new NetStream(nc);
  tvid.attachVideo(ns);
  ns.setBufferTime(2);
  statusID = setInterval(videoStatus, 200);
  ns.onStatus = function(info) {
  trace(info.code);
  if(info.code == "NetStream.Buffer.Full") {
  bufferClip._visible = false;
  ending = false;
  clearInterval( statusID );
  statusID = setInterval(videoStatus, 200);
  if(info.code == "NetStream.Buffer.Empty") {
  if ( !ending ) {
  bufferClip._visible = true;
  if(info.code == "NetStream.Play.Stop") {
  bufferClip._visible = false;
  //ending = true;
  if(info.code == "NetStream.Play.Start") {
  ending = false;
  if(info.code == "NetStream.Buffer.Flush") {
  ending = true;
  //Play it
  ns.play("
  http://localhost:3000/stream");
  ==============
  It seems to me that the "decision" of whether or not to cache
  is entirely dependent on the access method within the client-side
  SWF. So, if in this case, I'm using NetStream to stream the video,
  will it still be cached on the client end? Or do I -have- to use
  FMS to prevent client caching - and if so, why? How does FMS
  prevent the client from caching the data (isn't it up to the client
  to delete the data bits after they're viewed?)
  Thanks a bunch for the help.