Using Windows Firewall with a server cluster

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

Using Windows Firewall with a Server Cluster

For a server cluster running Windows Server 2003 Service Pack 1, if you enable Windows Firewall, you must carry out the following steps on each cluster node:

  • Learn about how to install and run the Security Configuration Wizard, an optional component that can be installed through Control Panel, by opening a command prompt and typing hh scwhelp.chm.

  • Install and run the Security Configuration Wizard. Select the appropriate server roles, client features, and administration options for that server. Select only what is necessary, but be sure to include the following:

    • Among server roles, select Cluster server and any server roles that correspond to the clustered resources for that node. For example, for a node with a File Share resource, select Cluster server and File server.

    • Among client features, select those necessary for the node to function. Examples of client features are Domain member, Microsoft networking client, DHCP client, DNS client, and WINS client.

    • Among administration and other options, select Join a cluster and any other appropriate options.

    The Security Configuration Wizard helps ensure that ports needed by the Cluster service are open and the Cluster service and other necessary services can operate normally.

  • In the Services snap-in, make sure that the Recovery action for the Cluster service is set to Restart the Service (the default setting). For more information, see Set up recovery actions to take place when a service fails.

    Note that this step will set the recovery action but will not immediately restart the Cluster service. If necessary, after taking the step, type net start clussvc to restart the service.

See Also

Concepts

Help: Windows Firewall