Default firewall configuration wishlist


  • Add two port sets: NNTP (119 and 563) and LDAP (389 and 636).
  • Add outgoing HTTP requests and LDAP requests to the predefined Email Client policy (MS Outlook requires LDAP, and reading HTML messages with image links requires HTTP).
  • Add a Newsgroup Client predefined policy (also with HTTP access).
  • Add a Mail and News Client predefined policy (useful for Outlook Express, Windows Mail and Windows Live Mail, as well as Mozilla Sunbird).

I have to do this manually every time I install CIS on a new machine, and it’s starting to get old… >:(