This post is a demo on how to disable Windows Firewall with PowerShell in Windows Server.
Disabling the Local Firewall on Windows is not a recommended move, and it will ultimately make your computer less secure. Sometimes it’s necessary though, for example, during troubleshooting a difficult issue you might want to disable it for a quick test to rule the FW out as being the root cause. But in this example, you will have already tried to ensure the Firewall Rule exists before turning it off completely.
Anyway, disabling Windows Firewall with PowerShell can be done by going through the following steps:
Before running any command or script on your machine, it’s important for us to understand everything that it’s doing. In the command below we are disabling all 3 profiles:
# Domain – For when you are connected to a Domain Controller (computer connected to AD).
# Private – For your home or private networks.
# Public – For public WIFI locations such as coffee shops etc.
For more information on this, see this link – Microsoft Docs: Windows Firewall Profiles
Also remember, all of this can be viewed and changed via GUI to help with understandings >
PowerShell commands follow standards and use verb-noun pairs for cmdlets. The verb at the start of the command describes the action the cmdlet performs, and the noun part is the action being performed. Here’s a list of Common Verbs, another Microsoft Docs link. The place of truth as I call it.
# get local firewall status Get-NetFirewallProfile | Format-Table Name, Enabled
We’re switching the cmdlet we ran above from Get to Set here (following on from verb-noun cmdlet descriptions).
To be able to run this; we have to open PowerShell or Windows Terminal as Administrator.
Set-NetFirewallProfile is being executed below, which disables all Profiles of the Local Windows Firewall –
# disable local firewall Set-NetFirewallProfile -Profile Domain,Public,Private -Enabled False # get local firewall status Get-NetFirewallProfile | Format-Table Name, Enabled
I followed the change by another run of Get-NetFirewallProfile to verify the change.
If this is a temporary change for you, to re-enable the Windows Firewall, amend the ‘-Enabled False‘ statement to ‘-Enabled True‘.