Network Commands

For network commands, you can use the Command Prompt or

PowerShell on Windows:

1. Command Prompt:
● Press Windows Key + R, type cmd, and press Enter.

2. PowerShell:
● Press Windows Key + X and select Windows PowerShell (Admin) or

Windows Terminal (Admin) for elevated permissions.

Essential Network Commands on Windows

1 | Page
8. Get-NetIPAddress
Test-NetConnection: Test network connectivity (replaces ping and
tracert in some scenarios).

Creating Firewall Rules in Windows

Allowing HTTP Traffic (Port 80): Inbound Rule

To allow incoming HTTP traffic on port 80, follow these steps:

1. Open Windows Defender Firewall with Advanced Security:

• Press Win + R to open the Run dialog box.
• Type wf.msc and press Enter.
2. Create a New Inbound Rule:
• In the left pane, click on Inbound Rules.
• In the right pane, click on New Rule....
3. Select Rule Type:
• Select Port and click Next.
4. Specify Port:
• Choose TCP.
• Enter 80 in the Specific local ports field.
• Click Next.
5. Allow the Connection:
• Select Allow the connection.
• Click Next.
6. Specify Profile:
• Select the network profiles where this rule should apply (Domain,
Private, Public).
• Click Next.
7. Name the Rule:
• Enter "Allow HTTP" as the name of the rule.
• Optionally, provide a description.
• Click Finish.

2 | Page
Blocking FTP Traffic (Port 21): Outbound Rule

To block outgoing FTP traffic on port 21, follow these steps:

1. Open Windows Defender Firewall with Advanced Security:

• Press Win + R to open the Run dialog box.
• Type wf.msc and press Enter.
2. Create a New Outbound Rule:
• In the left pane, click on Outbound Rules.
• In the right pane, click on New Rule....

3. Select Rule Type:

• Select Port and click Next.

4. Specify Port:
• Choose TCP.
• Enter 21 in the Specific local ports field.
• Click Next.

5. Block the Connection:

• Select Block the connection.
• Click Next.

6. Specify Profile:
• Select the network profiles where this rule should apply (Domain,
Private, Public).
• Click Next.

7. Name the Rule:

• Enter "Block FTP" as the name of the rule.
• Optionally, provide a description.
• Click Finish.

3 | Page
Testing the Rules

Testing Allowed Traffic

To verify that the HTTP traffic is allowed:

1. Open Command Prompt:

o Press Win + R, type cmd, and press Enter.

2. Use Telnet to Test Allowed Traffic:

o Type the following command and press Enter

80

Testing Blocked Traffic

To verify that the FTP traffic is blocked:

1. Open Command Prompt:

• Press Win + R, type cmd, and press Enter.

These steps should help you create and test firewall rules for allowing
HTTP traffic and blocking FTP traffic in Windows.

Using Network Security Tools

For IDS/IPS functionality on Windows, consider third-party tools such as

Snort (which can be run on Windows), or dedicated Windows-based
security solutions like Windows Defender ATP.

Setting Up Snort on Windows

1. Download and Install Snort:

● Go to the Snort website (snort.org/) and download the Windows installer.

● Follow the installation instructions.

4 | Page
2. Configure Snort:
● Open the Snort configuration file (usually located in
C:\Snort\etc\snort.conf).
Customize the configuration as needed.

3. Run Snort:
● Open Command Prompt as Administrator.

Navigate to the Snort directory:

● cd C:\Snort\bin

Start Snort:
snort -A console -q -c ..\etc\snort.conf -i 1
● Replace -i 1 with the appropriate network interface index.

By following these steps, you can configure and use network security
tools and commands effectively on a Windows system.

5 | Page