Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
A Scan Profile, Dynamic Collection, and Basic Report for firewall status. Built for https://help.pdq.com/hc/en-us/community/posts/360054465291-Firewall-Status-on-all-PC-s-
<?xml version="1.0" encoding="utf-8"?>
<AdminArsenal.Export Code="PDQInventory" Name="PDQ Inventory" Version="18.1.0.0" MinimumVersion="4.0">
<Collection>
<ReportDefinition name="Definition">
<RootFilter name="Filter">
<Comparison>All</Comparison>
<Filters type="list">
<ValueFilter>
<Table>Registry</Table>
<Column>Hive</Column>
<Comparison>Equals</Comparison>
<Value>HKEY_LOCAL_MACHINE</Value>
</ValueFilter>
<ValueFilter>
<Table>Registry</Table>
<Column>PathName</Column>
<Comparison>StartsWith</Comparison>
<Value>SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy</Value>
</ValueFilter>
<ValueFilter>
<Table>Registry</Table>
<Column>Name</Column>
<Comparison>Equals</Comparison>
<Value>EnableFirewall</Value>
</ValueFilter>
<ValueFilter>
<Table>Registry</Table>
<Column>Value</Column>
<Comparison>Equals</Comparison>
<Value>0</Value>
</ValueFilter>
</Filters>
</RootFilter>
<ReportDefinitionTypeName>BasicReportDefinition</ReportDefinitionTypeName>
<Columns type="list">
<Column>
<Column>ComputerId</Column>
<Summary></Summary>
<Table>Computer</Table>
<Title></Title>
</Column>
</Columns>
</ReportDefinition>
<IsDrilldown value="false" />
<ImportedPath></ImportedPath>
<TypeName>DynamicCollection</TypeName>
<Created>2019-10-14T10:16:32.0000000-06:00</Created>
<Description>One or more firewall profiles are disabled</Description>
<Error></Error>
<Id value="1181" />
<IsEnabled value="true" />
<Modified>2019-10-14T10:21:17.0000000-06:00</Modified>
<Name>Firewall profile(s) disabled - Collection</Name>
<ParentId value="null" />
<Path>Firewall profile(s) disabled - Collection</Path>
<Type>DynamicCollection</Type>
<Children type="list" />
</Collection>
</AdminArsenal.Export>
<?xml version="1.0" encoding="utf-8"?>
<AdminArsenal.Export Code="PDQInventory" Name="PDQ Inventory" Version="18.1.0.0" MinimumVersion="3.1">
<Report>
<ReportDefinition name="Definition">
<RootFilter name="Filter">
<Comparison>All</Comparison>
<Filters type="list">
<ValueFilter>
<Table>Registry</Table>
<Column>Hive</Column>
<Comparison>Equals</Comparison>
<Value>HKEY_LOCAL_MACHINE</Value>
</ValueFilter>
<ValueFilter>
<Table>Registry</Table>
<Column>PathName</Column>
<Comparison>StartsWith</Comparison>
<Value>SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy</Value>
</ValueFilter>
<ValueFilter>
<Table>Registry</Table>
<Column>Name</Column>
<Comparison>Equals</Comparison>
<Value>EnableFirewall</Value>
</ValueFilter>
<ValueFilter>
<Table>Registry</Table>
<Column>Value</Column>
<Comparison>Equals</Comparison>
<Value>0</Value>
</ValueFilter>
</Filters>
</RootFilter>
<ReportDefinitionTypeName>BasicReportDefinition</ReportDefinitionTypeName>
<Columns type="list">
<Column>
<Column>Name</Column>
<Summary></Summary>
<Table>Computer</Table>
<Title></Title>
</Column>
<Column>
<Column>Hive</Column>
<Summary></Summary>
<Table>Registry</Table>
<Title></Title>
</Column>
<Column>
<Column>PathName</Column>
<Summary></Summary>
<Table>Registry</Table>
<Title></Title>
</Column>
<Column>
<Column>Name</Column>
<Summary></Summary>
<Table>Registry</Table>
<Title></Title>
</Column>
<Column>
<Column>Value</Column>
<Summary></Summary>
<Table>Registry</Table>
<Title></Title>
</Column>
</Columns>
</ReportDefinition>
<Created>2019-10-14T10:19:25.0000000-06:00</Created>
<Description></Description>
<IsNew value="false" />
<Modified>2019-10-14T10:21:10.0000000-06:00</Modified>
<Name>Firewall profile(s) disabled - Report</Name>
<Path>Reports\Firewall profile(s) disabled - Report</Path>
<ReportFolderId value="1" />
<TypeName>BasicReport</TypeName>
<ReportType>BasicReport</ReportType>
</Report>
</AdminArsenal.Export>
<?xml version="1.0" encoding="utf-8"?>
<AdminArsenal.Export Code="PDQInventory" Name="PDQ Inventory" Version="18.1.0.0" MinimumVersion="14.0">
<ScanProfile>
<Collections type="list" />
<Scanners type="list">
<Scanner>
<ExcludePattern></ExcludePattern>
<Hive>HKEY_LOCAL_MACHINE</Hive>
<IncludePattern>System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\*Profile\</IncludePattern>
<RowLimit value="2500" />
<TypeName>Registry</TypeName>
<SourceScannerId value="59" />
</Scanner>
</Scanners>
<Description>https://stackoverflow.com/questions/11351651/how-to-check-windows-firewall-is-enabled-or-not-using-commands</Description>
<ScanProfileId value="28" />
<Name>Firewall Status</Name>
<ScheduleTriggerSet name="ScheduleTriggers">
<Triggers type="list" />
</ScheduleTriggerSet>
</ScanProfile>
</AdminArsenal.Export>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.