How to Disable the Windows Filtering Platform (disable wfp)
465 views
Skip to first unread message
Lyle
Jul 6, 2009, 7:55:57 PM7/6/09
to WindowsFilteringPlatform
I am starting this thread with hopes we as IT Administrators can
finally find a decent way to disable the Windows Filtering Platform on
Windows Server 2008 and Windows Vista
Currently, from what I understand, the Base Filtering Engine Service
(BFE) can be disabled which turns off about 90% of the Windows
Filtering Platform.
Also,from what I have read - This is not the ideal way to diable it.
It can leave 'remnants' of the filtering rules on the TCP/IP Stack,
and can cause all sorts of issues.
I have disabled with BFE Service on one of my test servers, and have
been running VMware Server and VMware converter on this system, and
ever since, everything has been working great.
My plan is to disable this on my primary database server, but I would
like some input to see what other people are seeing.
The reason I am not just going to turn it off is we have about 1TB
worth of databases on this server, and about half of my company is
always accessing these databases. I would love to get the WFP
disabled, as I believe it is causing one of our applications to time
out.
Looking at the event log -> security log I can see my user log in, and
then the lsass.exe process is deniaed a bind to a local port. It
looks like the user sends the auth request, the server recieves it,
and tries to forward it to a DC, and fails. Then the user is presented
with a 'time-out error' from our app, which seems like it is actually
failing to authenticate properly
Anyone else?
finally find a decent way to disable the Windows Filtering Platform on
Windows Server 2008 and Windows Vista
Currently, from what I understand, the Base Filtering Engine Service
(BFE) can be disabled which turns off about 90% of the Windows
Filtering Platform.
Also,from what I have read - This is not the ideal way to diable it.
It can leave 'remnants' of the filtering rules on the TCP/IP Stack,
and can cause all sorts of issues.
I have disabled with BFE Service on one of my test servers, and have
been running VMware Server and VMware converter on this system, and
ever since, everything has been working great.
My plan is to disable this on my primary database server, but I would
like some input to see what other people are seeing.
The reason I am not just going to turn it off is we have about 1TB
worth of databases on this server, and about half of my company is
always accessing these databases. I would love to get the WFP
disabled, as I believe it is causing one of our applications to time
out.
Looking at the event log -> security log I can see my user log in, and
then the lsass.exe process is deniaed a bind to a local port. It
looks like the user sends the auth request, the server recieves it,
and tries to forward it to a DC, and fails. Then the user is presented
with a 'time-out error' from our app, which seems like it is actually
failing to authenticate properly
Anyone else?
Reply all
Reply to author
Forward
0 new messages