PowerShell Logo Small

Get-NetFirewallSecurityFilter



This is the built-in help made by Microsoft for the command 'Get-NetFirewallSecurityFilter', in PowerShell version 5 - as retrieved from Windows version 'Microsoft Windows Server 2012 R2 Standard' PowerShell help files on 2016-06-23.

For PowerShell version 3 and up, where you have Update-Help, this command was run just before creating the web pages from the help files.

SYNOPSIS

Retrieves security filter objects from the target computer.

SYNTAX


Get-NetFirewallSecurityFilter [-All] [-AsJob] [-CimSession <CimSession[]>] [-GPOSession <String>] [-PolicyStore <String>] [-ThrottleLimit <Int32>] [<CommonParameters>]
Get-NetFirewallSecurityFilter [-AsJob] [-Authentication <Authentication[]>] [-CimSession <CimSession[]>] [-Encryption <Encryption[]>] [-GPOSession <String>] [-LocalUser
<String[]>] [-OverrideBlockRules <Boolean[]>] [-PolicyStore <String>] [-RemoteMachine <String[]>] [-RemoteUser <String[]>] [-ThrottleLimit <Int32>] [<CommonParameters>]
Get-NetFirewallSecurityFilter [-AsJob] [-CimSession <CimSession[]>] [-GPOSession <String>] [-PolicyStore <String>] [-ThrottleLimit <Int32>] -AssociatedNetFirewallRule
<CimInstance> [<CommonParameters>]



Search powershellhelp.space

DESCRIPTION


The Get-NetFirewallSecurityFilter cmdlet returns security filter objects associated with the input firewall rules.


Security filter objects represent the security conditions associated with firewall rules. The Authentication, Encryption, OverrideBlockRules, LocalUser, RemoteUser, and
RemoteMachine parameters of a single rule are represented in a separate NetFirewallSecurityFilter object. The filter to rule relationship is always one-to-one and is managed
automatically. Rule parameters associated with filters can only be queried using filter objects.


This cmdlet displays the security settings associated with firewall rules. This allows for rule querying based on the Authentication, Encryption, OverrideBlockRules,
LocalUser, RemoteUser, and RemoteMachine parameters; this cmdlet returns filter objects that may be further queried with the Where-Object cmdlet. The cmdlet also allows the
interface type filters to be obtained by filter object query. The resultant filters are passed into the Get-NetFirewallRule cmdlet to return the rules queried by security
settings.


To modify the security conditions, two methods can be used starting with the security filters returned by this cmdlet and optional additional querying.


The array of NetFirewallSecurityFilter objects can be piped into the Get-NetFirewallRule cmdlet, which returns the rules associated with the filters. These rules are then
piped into the Set-NetFirewallRule cmdlet where the interface properties can be configured.


Alternatively, piping the array of NetFirewallSecurityFilter objects directly into the Set-NetFirewallSecurityFilter cmdlet allows the Authentication, Encryption,
OverrideBlockRules, LocalUser, RemoteUser, and RemoteMachine parameters of the rules to be modified.



<

RELATED LINKS

Online Version: http://go.microsoft.com/fwlink/?LinkId=285412
Format-Table
Where-Object
Get-NetFirewallRule
Get-NetIPSecRule
New-NetFirewallRule
New-NetIPSecRule
Set-NetFirewallInterfaceFilter
Set-NetFirewallRule
Set-NetFirewallSecurityFilter
Set-NetIPSecRule

REMARKS

<

Examples


Example 1

PS C:\>Get-NetFirewallSecurityFilter -PolicyStore ActiveStore


This cmdlet shows the same information in a dynamically-sized, formatted table.
PS C:\>Get-NetFirewallSecurityFilter -PolicyStore ActiveStore | Format-Table -Property *



This example retrieves the security conditions associated with all the firewall rules in the active store. Running this cmdlet without specifying the policy store retrieves
the persistent store.




Example 2

PS C:\>Get-NetFirewallRule –DisplayName "Contoso Messenger" | Get-NetFirewallSecurityFilter



This example gets the security properties of a particular firewall rule.




Example 3

PS C:\>Get-NetFirewallSecurityFilter –OverrideBlockRules $True | Get-NetFirewallRule



This example gets all of the authenticated bypass rules in the persistent store.




Example 4

PS C:\>Get-NetFirewallSecurityFilter -Authentication Required | Where-Object -Property { $_.RemoteUser -Eq "$secureUserGroupSDDL" } | Get-NetFirewallRule



This example gets the firewall rules that require authentication by a specified user group.