如何在域网络windows防火墙中打开端口

【问题标题】:how to open port in Domain network windows firewall如何在域网络windows防火墙中打开端口
【发布时间】:2015-05-30 12:19:17
【问题描述】:

我需要在域网络防火墙中为我的应用程序打开特定端口。

我试过这段代码:

 INetFwOpenPorts ports;
 INetFwOpenPort port = (INetFwOpenPort)Activator.CreateInstance(
Type.GetTypeFromProgID("HNetCfg.FWOpenPort")); ;

 port.Port = 8000; /* port no */
 port.Name = "Application1"; /*name of the application using the port */
 port.Enabled = true; /* enable the port */
 port.Scope = NetFwTypeLib.NET_FW_SCOPE_.NET_FW_SCOPE_ALL;
 port.Protocol = NetFwTypeLib.NET_FW_IP_PROTOCOL_.NET_FW_IP_PROTOCOL_UDP;//.NET_FW_IP_PROTOCO L_TCP;

 Type NetFwMgrType = Type.GetTypeFromProgID("HNetCfg.FwMgr", false);
 INetFwMgr mgr = (INetFwMgr)Activator.CreateInstance(NetFwMgrType);
 ports = (INetFwOpenPorts)mgr.LocalPolicy.CurrentProfile.GloballyOpenPorts;
 ports.Add(port);

但它不起作用!在 Windows 防火墙中的域网络打开之前,我的数据不会发送!

【问题讨论】:

    标签: c# network-programming windows-8.1 windows-firewall


    【解决方案1】:

    第一步,添加引用:

    C:\Windows\System32\FirewallAPI.dll

    下面是有方法的类:

    • GloballyOpenPort - 在网络 windows 防火墙中打开端口
    • SetProfilesForRule - 为规则设置配置文件 DOMAIN、PRIVATE、PUBLIC 
    public class Firewall
{
    private const string CLSID_FIREWALL_MANAGER = "{304CE942-6E39-40D8-943A-B913C40C9CD4}";
    private const string PROGID_AUTHORIZED_APPLICATION = "HNetCfg.FwAuthorizedApplication";
    private const string PROGID_OPEN_PORT = "HNetCfg.FWOpenPort";
    private const string PROGID_POLITCY2 = "HNetCfg.FwPolicy2";

    [Flags]
    public enum PROFILE { DOMAIN = 1, PRIVATE = 2, PUBLIC = 5 };

    /// <summary>
    /// Create instance of the INetFwMgr that provides access to the firewall settings for a computer.
    /// </summary>
    /// <returns></returns>
    private static INetFwMgr GetFirewallManager()
    {
        Type objectType = Type.GetTypeFromCLSID(new Guid(CLSID_FIREWALL_MANAGER));

        return Activator.CreateInstance(objectType) as NetFwTypeLib.INetFwMgr;
    }


    /// <summary>
    /// Enable firewall
    /// </summary>
    public static void Enable()
    {
        INetFwMgr manager = Firewall.GetFirewallManager();

        bool isFirewallEnabled = manager.LocalPolicy.CurrentProfile.FirewallEnabled;

        if (isFirewallEnabled == false)
            manager.LocalPolicy.CurrentProfile.FirewallEnabled = true;
    }


    /// <summary>
    /// Authorize application
    /// </summary>
    /// <param name="title"></param>
    /// <param name="applicationPath"></param>
    /// <param name="scope"></param>
    /// <param name="ipVersion"></param>
    /// <returns></returns>
    public static bool AuthorizeApplication(string title, string applicationPath, NET_FW_SCOPE_ scope, NET_FW_IP_VERSION_ ipVersion)
    {
        // Create the type from prog id
        Type type = Type.GetTypeFromProgID(PROGID_AUTHORIZED_APPLICATION);

        // Create instance that provides access to the properties of an application that has been authorized have openings in the firewall.
        INetFwAuthorizedApplication auth = Activator.CreateInstance(type) as INetFwAuthorizedApplication;
        auth.Name = title;
        auth.ProcessImageFileName = applicationPath;
        auth.Scope = scope;
        auth.IpVersion = ipVersion;
        auth.Enabled = true;


        INetFwMgr manager = GetFirewallManager();
        try
        {
            manager.LocalPolicy.CurrentProfile.AuthorizedApplications.Add(auth);
        }
        catch (Exception ex)
        {
            return false;
        }
        return true;
    }

    /// <summary>
    /// Open port in network windows firewall
    /// </summary>
    /// <param name="name"></param>
    /// <param name="portNo"></param>
    /// <param name="scope"></param>
    /// <param name="protocol"></param>
    /// <param name="ipVersion"></param>
    /// <returns></returns>
    public static bool GloballyOpenPort(string name, int portNo,
                                        NET_FW_SCOPE_ scope, NET_FW_IP_PROTOCOL_ protocol, NET_FW_IP_VERSION_ ipVersion)
    {
        INetFwMgr manager = GetFirewallManager();
        try
        {
            // Check if port does not exists.
            bool exists = false;
            foreach (INetFwOpenPort openPort in manager.LocalPolicy.CurrentProfile.GloballyOpenPorts)
            {
                if (openPort.Name == name && openPort.Port == portNo)
                {
                    exists = true;
                    break;
                }
            }

            if (!exists)
            {
                // Create the type from prog id
                Type type = Type.GetTypeFromProgID(PROGID_OPEN_PORT);
                // Create instance that provides access to the properties of a port that has been opened in the firewall.
                INetFwOpenPort port = Activator.CreateInstance(type) as INetFwOpenPort;

                // Set properties for port
                port.Name = name;
                port.Port = portNo;
                port.Scope = scope;
                port.Protocol = protocol;
                port.IpVersion = ipVersion;

                // Add open port to windows firewall
                manager.LocalPolicy.CurrentProfile.GloballyOpenPorts.Add(port);
            }
        }
        catch (Exception ex)
        {
            return false;
        }
        return true;
    }

    /// <summary>
    /// Set profiles for rule 
    /// </summary>
    /// <param name="name">Name of rule</param>
    /// <param name="profiles">bitmask value: 3 - public; 2 - private; 1 - domain</param>
    /// <returns></returns>
    public static bool SetProfilesForRule(string name, int profiles)
    {
        try
        {
            // Create the type from prog id
            Type typePolicy2 = Type.GetTypeFromProgID(PROGID_POLITCY2);
            // Create instance that allows an application or service to access the firewall policy.
            INetFwPolicy2 policy2 = Activator.CreateInstance(typePolicy2) as INetFwPolicy2;

            // Set profiles for rule                    
            policy2.Rules.Item(name).Profiles = profiles;
        }
        catch (Exception ex)
        {
            return false;
        }
        return true;
    }
}

    为规则设置配置文件的调用方法示例:

    方法中的第一个参数是规则的名称

    第二个参数是 int 的配置文件类型,我们可以将其设置为枚举类型 PROFILE 的位掩码

    int profile = (int)(PROFILE.DOMAIN | PROFILE.PRIVATE | 简介.公共); SetProfilesForRule("RuleName", profile);

    【讨论】:

      猜你喜欢
      • 1970-01-01
      • 2012-02-14
      • 2019-12-22
      • 2016-06-06
      • 2013-12-02
      • 2012-08-16
      • 2015-06-17
      • 1970-01-01
      相关资源
      最近更新 更多
      热门标签
      Java Python linux javascript Mysql C# Docker 算法 前端 SpringBoot Redis Vue spring 设计模式 .net core .net kubernetes c++ 数据库 数据结构 大数据 js 机器学习 微服务 Android Go 程序员 面试 JVM ASP.net core 云原生 人工智能 后端 PHP git CSS golang k8s Nginx Django mybatis 深度学习 多线程 React 架构 devops 爬虫 云计算 Spring Boot LeetCode