{"id":235817,"date":"2024-04-12T14:41:03","date_gmt":"2024-04-12T14:41:03","guid":{"rendered":"https:\/\/www.ninjaone.com\/?post_type=script_hub&#038;p=235817"},"modified":"2024-04-12T14:41:34","modified_gmt":"2024-04-12T14:41:34","slug":"verifier-le-pare-feu-windows-avec-powershell","status":"publish","type":"script_hub","link":"https:\/\/www.ninjaone.com\/fr\/script-hub\/verifier-le-pare-feu-windows-avec-powershell\/","title":{"rendered":"V\u00e9rifier le pare-feu Windows avec PowerShell"},"content":{"rendered":"<h2>Points \u00e0 retenir<\/h2>\n<ul>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"1\" data-aria-level=\"1\"><strong>V\u00e9rification efficace de l&rsquo;\u00e9tat du pare-feu<\/strong>: Le script PowerShell permet de v\u00e9rifier rapidement les profils du pare-feu Windows, ce qui am\u00e9liore consid\u00e9rablement la gestion de la s\u00e9curit\u00e9 du r\u00e9seau.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"2\" data-aria-level=\"1\"><strong>Personnalisable et flexible<\/strong>: Adaptable \u00e0 des besoins sp\u00e9cifiques, le script peut v\u00e9rifier des profils de pare-feu individuels ou multiples et prendre compte des variables de l&rsquo;environnement.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"3\" data-aria-level=\"1\"><strong>Am\u00e9lioration de la posture de s\u00e9curit\u00e9<\/strong>: Une utilisation r\u00e9guli\u00e8re permet de maintenir des normes de s\u00e9curit\u00e9 coh\u00e9rentes et d&rsquo;identifier les vuln\u00e9rabilit\u00e9s potentielles dans les configurations de pare-feu.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"4\" data-aria-level=\"1\"><strong>Automatisation permettant de gagner du temps<\/strong>: Il automatise une t\u00e2che de routine, r\u00e9duisant les efforts manuels et le risque d&rsquo;erreur humaine.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"5\" data-aria-level=\"1\"><strong>\u00c9volutivit\u00e9 pour les r\u00e9seaux plus importants<\/strong>: Il est id\u00e9al pour une utilisation sur plusieurs syst\u00e8mes, ce qui en fait un outil pr\u00e9cieux pour les professionnels de l&rsquo;informatique qui g\u00e8rent de grands r\u00e9seaux.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"6\" data-aria-level=\"1\"><strong>Compatibilit\u00e9 et exigences<\/strong>: Con\u00e7u pour Windows 10 et Windows Server 2012 R2, il convient aux environnements informatiques modernes.<\/li>\n<li data-leveltext=\"\uf0b7\" data-font=\"Symbol\" data-listid=\"1\" data-list-defn-props=\"{&quot;335552541&quot;:1,&quot;335559685&quot;:720,&quot;335559991&quot;:360,&quot;469769226&quot;:&quot;Symbol&quot;,&quot;469769242&quot;:[8226],&quot;469777803&quot;:&quot;left&quot;,&quot;469777804&quot;:&quot;\uf0b7&quot;,&quot;469777815&quot;:&quot;hybridMultilevel&quot;}\" data-aria-posinset=\"7\" data-aria-level=\"1\"><strong>Int\u00e9gration avec les outils de gestion informatique<\/strong>: Peut \u00eatre associ\u00e9 \u00e0 des solutions compl\u00e8tes de gestion informatique telles que NinjaOne pour une strat\u00e9gie de s\u00e9curit\u00e9 et de gestion plus solide.<\/li>\n<\/ul>\n<h2>Introduction<\/h2>\n<p>Comprendre et g\u00e9rer la s\u00e9curit\u00e9 des r\u00e9seaux est une t\u00e2che essentielle dans l&rsquo;environnement informatique actuel. Les <a href=\"https:\/\/www.ninjaone.com\/blog\/what-is-a-firewall\/\">pare-feux<\/a> constituent une premi\u00e8re ligne de d\u00e9fense contre diverses cybermenaces. Il est donc essentiel que les professionnels de l&rsquo;informatique v\u00e9rifient et contr\u00f4lent r\u00e9guli\u00e8rement leur \u00e9tat. Dans ce contexte, les <a href=\"https:\/\/www.ninjaone.com\/fr\/script-hub\">scripts PowerShell<\/a> deviennent des outils inestimables, offrant des moyens efficaces de g\u00e9rer et de rendre compte des configurations de pare-feu dans les syst\u00e8mes Windows.<\/p>\n<h2>Contexte<\/h2>\n<p>Le script en question est con\u00e7u pour les professionnels de l&rsquo;informatique, les <a href=\"https:\/\/www.ninjaone.com\/fr\/quest-ce-quun-msp\">fournisseurs de services g\u00e9r\u00e9s (MSP)<\/a> et les administrateurs de r\u00e9seau qui ont besoin d&rsquo;une m\u00e9thode rapide et efficace pour v\u00e9rifier l&rsquo;\u00e9tat des profils du pare-feu Windows. Ce script PowerShell est d&rsquo;autant plus pertinent qu&rsquo;il est de plus en plus n\u00e9cessaire de mettre en place des mesures de s\u00e9curit\u00e9 solides face \u00e0 l&rsquo;augmentation des cybermenaces. La capacit\u00e9 du script \u00e0 fournir des informations d\u00e9taill\u00e9es sur l&rsquo;\u00e9tat du pare-feu est un atout pour le maintien de la s\u00e9curit\u00e9 et de la conformit\u00e9 du r\u00e9seau.<\/p>\n<h2>Le script :<\/h2>\n<pre class=\"EnlighterJSRAW\" data-enlighter-language=\"powershell\">&lt;#\r\n.SYNOPSIS\r\n    Get the current status of the specified windows firewall profile. If none is specified it will check all of them.\r\n.DESCRIPTION\r\n    Get the current status of the specified windows firewall profile. If none is specified it will check all of them. \r\n    An exit code of 1 indicates that one or more profiles are currently disabled and 2 indicates some sort of error. \r\n    It will also output a status message.\r\n.EXAMPLE\r\n    (No Parameters)\r\n    WARNING: The Private Firewall Profile is disabled!\r\n    The Domain Firewall Profile is enabled!\r\n    The Public Firewall Profile is enabled!\r\n\r\nPARAMETER: -Name \"Domain,Private\"\r\n    This will accept a string or array of strings representing the firewall profile names you want to check.\r\n.EXAMPLE\r\n    -Name \"Domain,Private\"\r\n    WARNING: The Private Firewall Profile is disabled!\r\n    The Domain Firewall Profile is enabled!\r\n.EXAMPLE\r\n    -Name \"Domain\"\r\n    The Domain Firewall Profile is enabled!\r\n\r\n.OUTPUTS\r\n    None\r\n.NOTES\r\n    General Notes\r\n    Minimum OS Architecture Supported: Windows 10, Windows Server 2012 R2\r\n    Release Notes: Initial Release\r\nBy using this script, you indicate your acceptance of the following legal terms as well as our Terms of Use at https:\/\/www.ninjaone.com\/terms-of-use.\r\n    Ownership Rights: NinjaOne owns and will continue to own all right, title, and interest in and to the script (including the copyright). NinjaOne is giving you a limited license to use the script in accordance with these legal terms. \r\n    Use Limitation: You may only use the script for your legitimate personal or internal business purposes, and you may not share the script with another party. \r\n    Republication Prohibition: Under no circumstances are you permitted to re-publish the script in any script library or website belonging to or under the control of any other software provider. \r\n    Warranty Disclaimer: The script is provided \u201cas is\u201d and \u201cas available\u201d, without warranty of any kind. NinjaOne makes no promise or guarantee that the script will be free from defects or that it will meet your specific needs or expectations. \r\n    Assumption of Risk: Your use of the script is at your own risk. You acknowledge that there are certain inherent risks in using the script, and you understand and assume each of those risks. \r\n    Waiver and Release: You will not hold NinjaOne responsible for any adverse or unintended consequences resulting from your use of the script, and you waive any legal or equitable rights or remedies you may have against NinjaOne relating to your use of the script. \r\n    EULA: If you are a NinjaOne customer, your use of the script is subject to the End User License Agreement applicable to you (EULA).\r\n#&gt;\r\n\r\n[CmdletBinding()]\r\nparam (\r\n    [Parameter()]\r\n    [String]$Name = \"All\"\r\n)\r\nbegin {\r\n    function Get-FirewallStatus () {\r\n        [CmdletBinding()]\r\n        param(\r\n            [Parameter(ValueFromPipeline)]\r\n            [ValidateSet(\"All\", \"Domain\", \"Public\", \"Private\")]\r\n            [String]$Name\r\n        )\r\n        process {\r\n            if ($Name -contains \"All\") {\r\n                $Result = Get-NetFirewallProfile -All | Select-Object \"Name\", \"Enabled\", \"DefaultInboundAction\"\r\n                \r\n            }\r\n            else {\r\n                $Result = Get-NetFirewallProfile -Name $Name | Select-Object \"Name\", \"Enabled\", \"DefaultInboundAction\"\r\n            }\r\n\r\n            $Result | ForEach-Object {\r\n                if (($_.Enabled -like $False) -or ($_.DefaultInboundAction -like \"Allow\")) {\r\n                    Write-Warning \"The $($_ | Select-Object Name -ExpandProperty Name) Firewall Profile is disabled or not set to block inbound connections!\"\r\n                }\r\n                else {\r\n                    Write-Host \"The $($_ | Select-Object Name -ExpandProperty Name) Firewall Profile is enabled and blocking inbound connections!\"\r\n                }\r\n            }\r\n            \r\n            $Result\r\n        }\r\n    }\r\n\r\n    $Names = New-Object -TypeName \"System.Collections.ArrayList\"\r\n    if ($env:publicProfile -or $env:privateProfile -or $env:domainProfile -or $env:allProfiles) {\r\n        if ($env:publicProfile -and $env:publicProfile -notlike \"false\") { $Names.add(\"Public\") | Out-Null }\r\n        if ($env:privateProfile -and $env:privateProfile -notlike \"false\") { $Names.Add(\"Private\") | Out-Null }\r\n        if ($env:domainProfile -and $env:DomainProfile -notlike \"false\") { $Names.Add(\"Domain\") | Out-Null }\r\n        if ($env:allProfiles -and $env:allProfiles -notlike \"false\") { $Names.Add(\"All\") | Out-Null }\r\n    }\r\n    else {\r\n        $Name -split \",\" | ForEach-Object { $Names.add($_.trim()) | Out-Null }\r\n    }\r\n    \r\n    if ($Names -contains \"All\") {\r\n        $Names = \"All\"\r\n    }\r\n\r\n    $ExitCode = 0\r\n}\r\nprocess {\r\n    try {\r\n        $Result = $Names | Get-FirewallStatus -ErrorAction Stop \r\n    }\r\n    catch {\r\n        Write-Error \"[Error] Invalid Input! The only valid profile names are Domain, Private, Public and All.\"\r\n        exit 2\r\n    }\r\n\r\n    $Result | ForEach-Object {\r\n        if($_.Enabled -like $False -or $_.DefaultInboundAction -like \"Allow\"){\r\n            $ExitCode = 1\r\n        }\r\n    }\r\n\r\n    exit $ExitCode\r\n}\r\nend {\r\n    \r\n    \r\n    \r\n}<\/pre>\n<p>&nbsp;<\/p>\n\n<div class=\"in-context-cta\"><p>Acc\u00e9dez \u00e0 plus de 700 scripts dans le Dojo NinjaOne<\/p>\n<p><a href=\"https:\/\/www.ninjaone.com\/fr\/phase-de-test-gratuit\/\">Obtenir l&rsquo;acc\u00e8s<\/a><\/p>\n<\/div>\n<h2>Description d\u00e9taill\u00e9e<\/h2>\n<p>Le script commence par un attribut CmdletBinding, qui indique les fonctions avanc\u00e9es d&rsquo;une cmdlet. Des param\u00e8tres sont d\u00e9finis pour s\u00e9lectionner des profils de pare-feu sp\u00e9cifiques.<\/p>\n<p>La fonction principale, <strong>Get-FirewallStatus<\/strong>, utilise la cmdlet <strong>Get-NetFirewallProfile<\/strong> pour r\u00e9cup\u00e9rer les d\u00e9tails du profil du pare-feu. Le script traite chaque profil de pare-feu, en v\u00e9rifiant s&rsquo;il est activ\u00e9 et s&rsquo;il bloque les connexions entrantes.<\/p>\n<p>Un message d&rsquo;avertissement s&rsquo;affiche si un profil est d\u00e9sactiv\u00e9 ou n&rsquo;est pas configur\u00e9 pour bloquer les connexions entrantes, ce qui permet au script d&rsquo;identifier rapidement les failles de s\u00e9curit\u00e9 potentielles.<\/p>\n<p>Le script prend en charge les variables d&rsquo;environnement et permet de v\u00e9rifier plusieurs profils simultan\u00e9ment, ce qui accro\u00eet sa flexibilit\u00e9 et sa facilit\u00e9 d&rsquo;utilisation dans divers environnements informatiques.<\/p>\n<h2>Cas d&rsquo;utilisation potentiels<\/h2>\n<p>Imaginez un administrateur informatique charg\u00e9 d&rsquo;assurer la s\u00e9curit\u00e9 du r\u00e9seau d&rsquo;une entreprise. En ex\u00e9cutant ce script, ils peuvent rapidement v\u00e9rifier l&rsquo;\u00e9tat des profils de pare-feu sur diff\u00e9rents syst\u00e8mes, ce qui garantit la conformit\u00e9 avec les politiques de s\u00e9curit\u00e9 de l&rsquo;entreprise.<\/p>\n<h2>Comparaisons<\/h2>\n<p>Par rapport aux v\u00e9rifications manuelles ou \u00e0 l&rsquo;utilisation de l&rsquo;interface graphique du pare-feu Windows, ce script constitue une solution plus efficace et plus \u00e9volutive. Il peut \u00eatre int\u00e9gr\u00e9 dans des flux de travail automatis\u00e9s plus importants, ce qui permet de gagner du temps et de r\u00e9duire les erreurs humaines.<\/p>\n<h2>FAQ<\/h2>\n<p><strong>Q\u00a0: Le script peut-il v\u00e9rifier l&rsquo;\u00e9tat du pare-feu sur des ordinateurs distants ?<\/strong><br \/>\nR\u00a0: Le script est con\u00e7u pour une ex\u00e9cution locale, mais il peut \u00eatre adapt\u00e9 pour une ex\u00e9cution \u00e0 distance en utilisant les commandes PowerShell Remoting.<\/p>\n<p><strong>Q\u00a0: Le script est-il compatible avec les anciennes versions de Windows ?<\/strong><br \/>\nR\u00a0: Le script n\u00e9cessite au minimum Windows 10 ou Windows Server 2012 R2.<\/p>\n<h2>Implications<\/h2>\n<p>Une configuration inad\u00e9quate des pare-feu peut entra\u00eener des vuln\u00e9rabilit\u00e9s dans le r\u00e9seau. En utilisant r\u00e9guli\u00e8rement ce script, les professionnels de l&rsquo;informatique peuvent identifier et corriger ces faiblesses de mani\u00e8re proactive, ce qui am\u00e9liore consid\u00e9rablement la s\u00e9curit\u00e9 du r\u00e9seau.<\/p>\n<h2>Recommandations<\/h2>\n<p>Il est recommand\u00e9 de programmer l&rsquo;ex\u00e9cution de ce script \u00e0 intervalles r\u00e9guliers. En outre, l&rsquo;int\u00e9gration de la sortie du script dans un syst\u00e8me de surveillance peut aider \u00e0 maintenir un contr\u00f4le continu de l&rsquo;\u00e9tat du pare-feu.<\/p>\n<h2>Conclusion :<\/h2>\n<p>L&rsquo;int\u00e9gration de ce script dans une strat\u00e9gie plus large de gestion du r\u00e9seau, y compris dans des outils comme NinjaOne, peut consid\u00e9rablement am\u00e9liorer la capacit\u00e9 d&rsquo;une entreprise \u00e0 g\u00e9rer son infrastructure informatique. NinjaOne offre des <a href=\"https:\/\/www.ninjaone.com\/fr\/\">solutions compl\u00e8tes de gestion informatique<\/a> qui peuvent fonctionner en tandem avec des scripts personnalis\u00e9s comme celui-ci, fournissant un \u00e9cosyst\u00e8me de gestion informatique plus coh\u00e9sif et plus performant.<\/p>\n","protected":false},"author":35,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"closed","template":"","meta":{"_acf_changed":false,"_relevanssi_hide_post":"","_relevanssi_hide_content":"","_relevanssi_pin_for_all":"","_relevanssi_pin_keywords":"","_relevanssi_unpin_keywords":"","_relevanssi_related_keywords":"","_relevanssi_related_include_ids":"","_relevanssi_related_exclude_ids":"","_relevanssi_related_no_append":"","_relevanssi_related_not_related":"","_relevanssi_related_posts":"","_relevanssi_noindex_reason":"","_lmt_disableupdate":"no","_lmt_disable":""},"operating_system":[4212],"use_cases":[4285],"class_list":["post-235817","script_hub","type-script_hub","status-publish","hentry","script_hub_category-windows"],"acf":[],"_links":{"self":[{"href":"https:\/\/www.ninjaone.com\/fr\/wp-json\/wp\/v2\/script_hub\/235817","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.ninjaone.com\/fr\/wp-json\/wp\/v2\/script_hub"}],"about":[{"href":"https:\/\/www.ninjaone.com\/fr\/wp-json\/wp\/v2\/types\/script_hub"}],"author":[{"embeddable":true,"href":"https:\/\/www.ninjaone.com\/fr\/wp-json\/wp\/v2\/users\/35"}],"replies":[{"embeddable":true,"href":"https:\/\/www.ninjaone.com\/fr\/wp-json\/wp\/v2\/comments?post=235817"}],"wp:attachment":[{"href":"https:\/\/www.ninjaone.com\/fr\/wp-json\/wp\/v2\/media?parent=235817"}],"wp:term":[{"taxonomy":"script_hub_category","embeddable":true,"href":"https:\/\/www.ninjaone.com\/fr\/wp-json\/wp\/v2\/operating_system?post=235817"},{"taxonomy":"use_cases","embeddable":true,"href":"https:\/\/www.ninjaone.com\/fr\/wp-json\/wp\/v2\/use_cases?post=235817"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}