In Progress

Windows Security Configuration

We need a Powershell script that checks some Windows Firewall rules ports, and put the result of this in a txt file.

These are the rules, and a short description:

01. Kerberos (TCP-In) = Inbound rule for Kerberos. (TCP)

02. Kerberos (UDP-In) = Inbound rule for Kerberos. (UDP)

03. Active Directory Domain Controller - W32Time (NTP-UDP-In) = Inbound rule for the Active Directory Domain Controller service to allow NTP traffic for the Windows Time service. (UDP 123)

04. Active Directory Domain Controller (RPC-EPMAP) = Inbound rule for the RPCSS service to allow RPC/TCP traffic to the Active Directory Domain Controller service.

05. NetBIOS name service (TCP-In) = Inbound rule for NetBIOS name service. (TCP)

06. NetBIOS name service (UDP-In) = Inbound rule for NetBIOS name service. (UDP)

07. Active Directory Domain Controller - NetBIOS datagram service (UDP-In) = Inbound rule for the Active Directory Domain Controller service to allow NetBIOS datagram service. (UDP 138)

08. NetBios session service = Inbound rule to the NetBios session service. (TCP 139)

09. Active Directory Domain Controller - LDAP (TCP-In) = Inbound rule for the Active Directory Domain Controller service to allow remote LDAP traffic. (TCP 389)

10. Active Directory Domain Controller - LDAP (UDP-In) = Inbound rule for the Active Directory Domain Controller service to allow remote LDAP traffic. (UDP 389)

11. Active Directory Domain Controller - SAM/LSA (NP-TCP-In) = Inbound rule for the Active Directory Domain Controller service to be remotely managed over Named Pipes. (TCP 445)

12. Kerberos Password Change (TCP-In) = Inbound rule for Kerberos Password Change. (TCP)

13. Kerberos Password Change (UDP-In) = Inbound rule for Kerberos Password Change. (UDP)

14. Active Directory Domain Controller - Secure LDAP (TCP-In) = Inbound rule for the Active Directory Domain Controller service to allow remote Secure LDAP traffic. (TCP 636)

15. Active Directory Domain Controller - LDAP for Global Catalog (TCP-In) = Inbound rule for the Active Directory Domain Controller service to allow remote Global Catalog traffic. (TCP 3268)

16. Active Directory Domain Controller - Secure LDAP for Global Catalog (TCP-In) = Inbound rule for the Active Directory Domain Controller service to allow remote Secure Global Catalog traffic. (TCP 3269)

The objective isn't to change the firewall ports, it's just to check the port for an audit.

The output txt file need to have this configuration (rule_name=port):

kerberos_tcpin=88

kerberos_tcpout=88

Thanks.

Skills: Shell Script, Windows API

See more: Powershell, tcp global, objective of audit, objective audit, audit result, audit file, powershell time, objective c windows, need an audit, Windows Active Directory, security check, security audit, name security, firewall configuration , check security, objective script, remote tcp, windows tcp, change security, ntp, windows service 2013, powershell active directory, port powershell, windows script shell, powershell script name

About the Employer:
( 9 reviews ) São Paulo, Brazil

Project ID: #4370362

Awarded to:

arunideas

I have 7+ years of scripting experience in automating manual tasks of Windows L2&L3 team using VBScript, WMI, Dos Batch jobs and Powershell.

$100 USD in 3 days
(0 Reviews)
0.0

4 freelancers are bidding on average $193 for this job

beshoyfares

Powershell developer (Used powershell ,setup factory ) for installing all product requirements and generate final exe contain( IIS configration,MySQL scema, services, checks,..., etc) Installer (setup Factory.. LUA) More

$220 USD in 3 days
(1 Review)
0.5
blaiddeira

I'm ready to start on this right away, and get it finished. I know how to write powershell scripts, and can give you one that does exactly what you asked for.

$250 USD in 1 day
(0 Reviews)
0.0
zkutch

Hello. More 20 years programming experiense.

$200 USD in 3 days
(0 Reviews)
0.0