Update breakglass-single.ps1

zeronetworks · Apr 9, 2024 · 721083e · 721083e
1 parent ea4c9cf
commit 721083e
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/Segment/Trust Server/breakglass-single.ps1 b/Segment/Trust Server/breakglass-single.ps1
@@ -3,4 +3,7 @@ $Credential = Get-Credential
 $ps = New-PSSession -ComputerName $AssetFQDN -Credential $Credential -Authentication Kerberos -ErrorAction SilentlyContinue -ErrorVariable errmsg
 
 Invoke-Command -Session $ps -Scriptblock { netsh advfirewall firewall add rule name="Zero Networks Break Glass Inbound Allow All" dir=in action=allow protocol=any } -ErrorAction Stop -ErrorVariable errmsg | Out-Null
+## UNCOMMENT for RDP Only, make sure to comment out line above.
+#Invoke-Command -Session $ps -Scriptblock { netsh advfirewall firewall add rule name="Zero Networks Break Glass Inbound Allow RDP" dir=in action=allow protocol=TCP localport=3389 } -ErrorAction Stop -ErrorVariable errmsg | Out-Null
+
 Invoke-Command -Session $ps -Scriptblock { netsh advfirewall firewall add rule name="Zero Networks Break Glass Outbound Allow All" dir=out action=allow protocol=any } -ErrorAction Stop -ErrorVariable errmsg | Out-Null