firewall configuration Archives

Winsage

August 14, 2025

Microsoft asks users to ignore certificate enrollment errors

Microsoft has advised users to disregard certain CertificateServicesClient (CertEnroll) errors following the installation of the July 2025 preview update and subsequent Windows 11 24H2 updates. Users were also encouraged to overlook Windows Firewall configuration errors after rebooting post-installation of the June 2025 preview update. In April 2025, Microsoft confirmed and rectified a known issue causing invalid 0x80070643 failure errors after applying April 2025 Windows Recovery Environment updates, and addressed a bug triggering BitLocker drive encryption errors on Windows 10 and 11 devices. In October, Microsoft clarified that a specific issue primarily affected managed Windows environments with enforced drive encryption. Recently, Microsoft updated its Windows release health dashboard, asking users to ignore an error logged in Event Viewer with Error ID 57, related to the 'Microsoft Pluton Cryptographic Provider' not loading due to initialization failure. They emphasized that this error can be safely ignored and does not indicate issues with active Windows components, as it stems from a feature still under development.

Winsage

July 21, 2025

Managing Windows Firewall Rules with PowerShell, Part 3: Creating a Baseline

The text discusses managing Windows firewall rules using PowerShell, particularly focusing on exporting firewall rules to a CSV file and comparing current configurations against a baseline. A PowerShell script is provided that retrieves all existing firewall rules, compiles their details into custom objects, and exports them to a CSV file. Another script is designed to compare a baseline CSV file of firewall rules with a current CSV file, checking for changes in various fields and identifying deleted rules. The script outputs any modifications found and notes if a rule has been deleted. It also mentions potential enhancements for handling new rules and duplicate rule names.

Winsage

July 15, 2025

Announcing Windows 11 Insider Preview Build 26120.4733 (Beta Channel)

Windows 11 Insider Preview Build 26120.4733 (KB5062651) has been released to the Beta Channel for Windows 11, version 24H2. This update includes new features such as the "describe image" action in Click to Do, which provides detailed descriptions of images and is currently available for Snapdragon-powered Copilot+ PCs, with support for AMD and Intel devices expected soon. An upcoming administrator protection feature will secure floating admin rights for users and is disabled by default. Improvements include updated privacy dialog designs for app permissions, activation of Smart App Control in evaluation mode, and various fixes for issues in File Explorer, taskbar, live captions, Dynamic Lighting, graphics, and settings. Known issues include potential rollback errors during installation, touch navigation problems in the new Start menu, Xbox Controller issues, and problems with the Microsoft Changjie Input method. Windows Insiders in the Beta Channel will receive updates based on Windows 11, version 24H2, and features may be rolled out gradually.

Winsage

July 14, 2025

Announcing Windows 11 Insider Preview Build 26200.5702 (Dev Channel)

Windows 11 Insider Preview Build 26200.5702 (KB5062653) has been released to the Dev Channel, introducing new features, improvements, and fixes. A new "describe image" action in Click to Do is now available for Snapdragon-powered Copilot+ PCs, with support for AMD and Intel-powered PCs expected soon. An upcoming security feature called Administrator protection allows for just-in-time admin privileges and is disabled by default. The design of privacy dialogs for app permissions has been updated, and Smart App Control may be activated in Windows Security for Insiders in evaluation mode. Windows PowerShell 2.0 has been deprecated and removed in this build. Fixes include resolving issues with File Explorer, search animations, live captions, Dynamic Lighting, and graphics synchronization. Known issues include error pop-ups in Group Policy Editor, touch navigation problems in the new Start menu, and Xbox Controller bugs via Bluetooth. Windows Insiders may experience a rollback error (0x80070005) when installing this update.

Winsage

July 6, 2025

Microsoft Confirms Windows 11 Update Causes Security Firewall Error

Microsoft Windows updates are essential for system security but can cause user challenges. A recent high-severity vulnerability, CVE-2025-33073, emphasizes the need for timely updates. Windows 11 users are experiencing a Firewall configuration error linked to the June 26 KB5060829 update, which has raised security concerns despite being a non-security update. Microsoft confirmed the error appears in the Event Viewer as "Config Read Failed" and occurs after each device restart, but it can be safely ignored and does not indicate a problem with Windows Firewall. The error is related to a feature under development, and Microsoft is working on a resolution for a future update.

Winsage

June 30, 2025

Can’t access your NAS drives in Windows 11? Here’s what to do

Users of Windows 11 Pro 24H2 are experiencing issues accessing Network Attached Storage (NAS) drives on local networks after a recent system update, resulting in error messages that disrupt workflow and data accessibility. This problem is attributed to compatibility issues introduced by the update. Troubleshooting steps include checking network settings, updating network drivers, adjusting firewall settings, rebooting devices, and accessing the NAS via its IP address.

Winsage

June 19, 2024

Hackers Weaponize Windows Installer (MSI) Files to Deliver Malware

- Malicious MSI files use DLLs during installation for various operations such as property management, task scheduling, and firewall configuration. - The MSI file creates scheduled tasks and configures firewall rules to whitelist inbound and outbound traffic associated with the malware. - Void Arachne promotes AI technologies for virtual kidnapping and sextortion schemes, including voice-altering and face-swapping AI applications. - Void Arachne distributes malware through SEO poisoning, spear-phishing links, and sharing malicious MSI files on Chinese-language-themed Telegram channels. - The proliferation of malicious MSI files poses a significant threat, leading to system compromise, data theft, and financial losses. - Trend Micro provides resources to educate on identifying, preventing, and addressing sextortion attacks, and victims are advised to report incidents to relevant authorities like the Internet Crime Complaint Center (IC3).