The short answer is yes, of course you can. But should you?
Consider the following: * How many IPs can the Windows Firewall’s storage mechanism (registry?) hold before performance degradation sets in? * If you are going to give the ColdFusion service account elevated access to the OS, could this be a security concern? * Is there a more pragmatic solution already available (i.e. web application firewall ala f5, cloudflare, nginx et al)? Just some thoughts I wanted to throw out there. If you still want to add rules to the Windows firewall programmatically you can use CFEXECUTE to call a batch file (look into “netsh advfirewall firewall add rule”) or call a PowerShell script created for your purposes. Take Care, Seth From: houcfug@googlegroups.com <houcfug@googlegroups.com> On Behalf Of Mike G Sent: Friday, September 21, 2018 2:29 PM To: houcfug@googlegroups.com Subject: [houcfug] Windows Firewall Hello All, Has anyone seen anything that will allow me to use ColdFusion to programatically add IP addresses to Windows firewall on the server? I manage this now with a script and a db and ban offenders using CF, but I would prefer to not have to check every IP against a DB and instead just put them directly into Windows Firewall into a Black Hole group I created for the aggressive offenders. TIA, M -- -- You received this message because you are subscribed to the "Houston ColdFusion Users' Group" discussion list. To unsubscribe, send email to houcfug-unsubscr...@googlegroups.com <mailto:houcfug-unsubscr...@googlegroups.com> For more options, visit http://groups.google.com/group/houcfug?hl=en --- You received this message because you are subscribed to the Google Groups "Houston ColdFusion Users' Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to houcfug+unsubscr...@googlegroups.com <mailto:houcfug+unsubscr...@googlegroups.com> . For more options, visit https://groups.google.com/d/optout. The information contained in this e-mail message may be privileged, confidential, and/or protected from disclosure. This e-mail message may contain protected health information (PHI); dissemination of PHI should comply with applicable federal and state laws. If you are not the intended recipient, or an authorized representative of the intended recipient, any further review, disclosure, use, dissemination, distribution, or copying of this message or any attachment (or the information contained therein) is strictly prohibited. If you think that you have received this e-mail message in error, please notify the sender by return e-mail and delete all references to it and its contents from your systems. -- -- You received this message because you are subscribed to the "Houston ColdFusion Users' Group" discussion list. To unsubscribe, send email to houcfug-unsubscr...@googlegroups.com For more options, visit http://groups.google.com/group/houcfug?hl=en --- You received this message because you are subscribed to the Google Groups "Houston ColdFusion Users' Group" group. To unsubscribe from this group and stop receiving emails from it, send an email to houcfug+unsubscr...@googlegroups.com. For more options, visit https://groups.google.com/d/optout.
