Firewall issue

Question

Hi,
I got port filtered issue on port 443. What reasons can be identified on the firewall?

Answer 1

Hello @Peter_1985

Thank you for your heads up.

I would like to add another suggestion besides the ones given from @MotoX80 and @Limitless Technology : )
When you are referring to a FW issue, I might thing if it is stateful firewall or the opposite. Please correct me If I am mistaken on this.

I want to understand more the issue you are experiencing now. So any relevant detail is more than welcome.. Because it seems to be 2 issues as per previous threads.

Having said that, it is not normal to have the port 443 blocked since it is a well known port and most services nowadays and for that reason I wonder if you have checked the next settings(assuming the device type).

-netstat command from CMD(To check listening ports)
-route print command(check ip table)
-Iperf (to send strings of data on a specific port)
-Since you are stating about a certificate so it is a SSL/TLS certificate but the question is.... Is this a self-signed certificate or which one?
-Are you matching all the TLS/SSL attributes for this correctly?
-The device using the certificate is able to support the cipher suites for this 2way traffic?
-Have you taken a packet capture to check the TLS/SSL handshake messages?
-Was this working before?
and so on....

Looking forward to your feedback

BR,

Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

Answer 2

Hi @Peter_1985 ,

Do you want to block TCP 443 connections?

You can create an inbound port rule.

https://learn.microsoft.com/en-us/windows/security/threat-protection/windows-firewall/create-an-inbound-port-rule

Answer 3

Hello Jackson1990

By default Port 443 should be always set by the system as LISTENING The main reason to appear as FILTERED means that either Windows Firewall, 3rd Party security software or intermediate Hardware or Software Firewall are filtering or monitoring this port.

My suggestion would be to:
1- Disable Windows Firewall and repeat the test. If this fixes the issue you can set an Open rule for port 443 using the powershell cmdlet New-NetFirewallRule : https://learn.microsoft.com/en-us/powershell/module/netsecurity/new-netfirewallrule?view=windowsserver2022-ps
2- Run a clean boot to disable 3rd Party security apps: https://support.microsoft.com/en-us/topic/how-to-perform-a-clean-boot-in-windows-da2f9573-6eec-00ad-2f8a-a97a1807f3dd
3- If none of the avobe works, you should consult with your ISP to check the configuration of your router, or consult with the Network administrator of your organization in order to investigate intermediate Firewalls

-----------------------------------------------------------------------------------------------------------------------------------------------------------

--If the reply is helpful, please Upvote and Accept as answer--

Answer 4

Open a command prompt and run ipconfig. Then open a browser and navigate to canyouseeme.org. If the IP addresses are the same, then your server is directly exposed on the internet and the Windows firewall software must be used to manage access. If they are different, then your server is sitting behind a network device and you will need to enable port forwarding on that device to have an internet request for any port routed to the private network IP address of your server.

As I have replied before, no one can help you until you provide detailed information about your network configuration and what you are trying to accomplish.