Differences

This shows you the differences between two versions of the page.

Link to this comparison view

userspace:win7_firewall_updates_and_other_cconfigs [2014/11/17 14:59]
Thomas_H created
userspace:win7_firewall_updates_and_other_cconfigs [2014/11/17 15:39] (current)
Thomas_H
Line 1: Line 1:
-work in Progress+====== Product : Win7-Config (Firewall, Updates and other) ====== 
 +Script by  --- //​[[hungerharke@gmx.de|Thomas_H]] 2014/11/17 15:14// \\ 
 +Tested with opsi 4.0.1 \\  
 +Test with W7 32 & 64 Bit \\  
 +The installion-files for Screen Resolution Changer (qres.exe) are available at : [[http://​sourceforge.net/​projects/​qres/​]] \\ 
 +Feel free to contact me for questions or errors. 
 + 
 +This script is doing the following:​ 
 + 
 +  - Set Screen Resolution to 1280 * 1024\\ 
 +  - Activate AutoUpdates\\ 
 +  - opens Remotedesktop\\ 
 +  - Activate Firewall\\ 
 +  - Reset Firewall (delete all rules)\\ 
 +  - Add VNCServer to Firewall\\ 
 +  - Add VNCViewer to Firewall\\ 
 +  - Open opsiclientd-control-port 4441 in Firewall\\ 
 +  - Open remotedesktop in Firewall 
 + 
 +For more options please feel free to add them under the script. 
 + 
 +Tree: \\ 
 +<​code>​ 
 +DATA_CLIENT 
 +  ├ win7config.jpg ​    # Product Picture 
 +  ├ setup.ins  
 +  └ qres.exe 
 +</​code>​ 
 + 
 +===== setup.ins ===== 
 +<code winst> 
 +[Initial] 
 +Message= Windows7-Settings 
 +SetLogLevel=6 
 +ExitOnError=false 
 +ScriptErrorMessages=true 
 +TraceMode=off 
 + 
 +ShowBitmap "​%ScriptPath%\win7config.jpg"​ 
 +if FileExists64("​C:​\Windows\cmd64.exe"​) ​  
 +  
 + registry_rdp /64Bit 
 + registry_update /64Bit 
 +                DosBatch_1 
 +        else 
 + registry_rdp /32Bit 
 + registry_update /32Bit 
 +                DosBatch_1 
 +endif 
 +  
 + 
 +[registry_rdp] 
 +openkey [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server] 
 +set "​fDenyTSConnections"​ = REG_DWORD:​0 
 + 
 +[registry_update] 
 +openkey [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU] 
 +set "​NoAutoUpdate"​ = REG_DWORD:​0 
 +set "​AUOptions"​ = REG_DWORD:​3 
 +set "​ScheduledInstallDay"​ = REG_DWORD:​4 
 +set "​ScheduledInstallTime"​ = REG_DWORD:​4 
 + 
 +[DosBatch_1] 
 +%scriptpath%\qres.exe /x:1280 /y:1024 
 +c:​\windows\system32\sc.exe config MpsSvc start= auto 
 +c:​\windows\system32\netsh.exe advfirewall set currentprofile state on >nul 
 +c:​\windows\system32\netsh.exe advfirewall reset 
 +c:​\windows\system32\netsh.exe advfirewall firewall add rule name="​VNCServer"​ dir=in action=allow program="​c:​\program files\tightvnc\tvnserver.exe"​ enable=yes 
 +c:​\windows\system32\netsh.exe advfirewall firewall add rule name="​VNCViewer"​ dir=in action=allow program="​c:​\program files\tightvnc\vncviewer.exe"​ enable=yes 
 +c:​\windows\system32\netsh.exe advfirewall firewall add rule name="​opsiclientd-control-port"​ dir=in action=allow protocol=TCP localport=4441 
 +c:​\windows\system32\netsh.exe advfirewall firewall set rule group="​remotedesktop"​ new enable=yes 
 + 
 +shutdown /r /f /t 0 
 +</​code>​ 
 + 
 +More options are following here. Add them to setup.ins as described in comments. 
 + 
 +===== more options ===== 
 +=== - Open Firewall for AVG (free) === 
 +<code winst> 
 +# open the firewall for AVG.  
 +#  - Add AVG Diagnose 2014 to Firewall 
 +#  - Add AVG Online Shield to Firewall 
 +#  - Add AVG Personal Email Scanner to Firewall 
 +#  - Add AVG Installation Program to Firewall 
 +
 +# Add this to the [Dos_Batch_1]-Section 
 + 
 +c:​\windows\system32\netsh.exe advfirewall firewall add rule name="​AVG Diagnose 2014" dir=in action=allow program="​c:​\program files\avg\avg2014\avgdiagex.exe"​ enable=yes 
 +c:​\windows\system32\netsh.exe advfirewall firewall add rule name="​AVG Online Shield"​ dir=in action=allow program="​c:​\program files\avg\avg2014\avgnsx.exe"​ enable=yes 
 +c:​\windows\system32\netsh.exe advfirewall firewall add rule name="​Personal Email Scanner"​ dir=in action=allow program="​c:​\program files\avg\avg2014\avgemcx.exe"​ enable=yes 
 +c:​\windows\system32\netsh.exe advfirewall firewall add rule name="​AVG Installationsprogramm"​ dir=in action=allow program="​c:​\program files\avg\avg2014\avgmfapx.exe"​ enable=yes 
 +</​code>​

QR Code
QR Code userspace:win7_firewall_updates_and_other_cconfigs (generated for current page)