Netsh or Network Shell is a command-line utility that helps IT admins configure and view various network-related functions on Windows 10. This utility can be used to manage Windows Firewall as well, and if you are looking for some straightforward ways that on the command line, then it is a useful utility to know and use.

Windows Firewall configuration is available deep into the settings, which makes it uncountable. There are no context menus and a one-step method to get a few things done. It is beneficial when you need to do that often. You can save the command in a BAT file and run it with admin permission to execute it quickly.

There used to be netsh firewall command, but that has been replaced or will be deprecated by netsh advfirewall.

The list of options you get the advfirewall are as follows:

Here is the list of some common commands you can use, such as to enable ports, allow programs, and so on.

Enable a Port

netsh advfirewall firewall add rule name= "Open Port 80" dir=in action=allow protocol=TCP localport=80

Delete enabled programs or ports

netsh advfirewall firewall delete rule name= rule name program="C:\MyApp\MyApp.exe"

netsh advfirewall firewall delete rule name= rule name protocol=udp localport=500

Enable specific services

netsh advfirewall firewall set rule group="File and Printer Sharing" new enable=Yes

netsh advfirewall firewall set rule group="remote desktop" new enable=Yes

Enable Windows firewall

netsh advfirewall set currentprofile state on

Restore policy defaults

netsh advfirewall reset

There are many more things that you can do with Netsh utility.

Covering all of them will be out of scope, and hence we recommend reading more details on the official Microsoft Documents.

Read next: How to allow Pings (ICMP Echo requests) through Windows Firewall.