Allow Pings (ICMP Echo Request) Through Your Windows Vista Firewall
Have you ever noticed that with the Windows Vista Firewall enabled, you can’t use ping from another computer to see if your Vista computer is alive? Sure, you could take the drastic step of disabling the firewall for testing purposes, but the simple solution is to just allow ICMP requests through the firewall.
Note: Opening extra ports opens up security risks… allowing ping isn’t a big deal, but it’s usually best to block anything you don’t need.
Allow ICMP Echo Request (ping) From the Command Line
Open up an administrator mode command prompt by right-clicking and choosing Run as Administrator, or type cmd into the start menu search box and then use Ctrl+Shift+Esc.
netsh firewall set icmpsetting 8 enable
To disable it again, simply enter this command:
netsh firewall set icmpsetting 8 disable
The change should be immediate… no need to restart anything.
Allow ICMP Echo Request (ping) With the GUI
Type in firewall into the start menu search box, and you want to choose “Windows Firewall with Advanced Security”.
Then click on Inbound Rules on the left-hand pane:
And find the following rule in the list:
Networking – Echo Request (ICMPv4-In)
Right-click on the rule, and choose “Enable Rule” from the menu, which should immediately enable ping.
If you want more control over the rule, you can choose Properties from the menu, and choose which interfaces or profiles this rule applies to.
You could specify that the rule only applies to your wired network interface, and not to the wireless, for example.
Note that I’m not advocating allowing this rule, I’m just illustrating how you can do it if you need it. If you don’t need it, then don’t enable it.
Daily Email Updates
You can get our how-to articles in your inbox each day for free. Just enter your name and email below:
Cntrl+Shift+Escape=Windows Task manager, on my VISTA Home Ultimate. Can’t get any further. Suggestions??
The Geek meant the following key combination: Ctrl + Shift + Enter
For Windows 7 Microsoft made changing this a tad more obscure (at least in the release candidate). Use the same approach to changing the settings through the GUI as described above but you’ll find that the “Networking – Echo Request (ICMPv4-In)” setting is no longer present. Use the appropriate “File and Printer Sharing – Discovery” settings instead. There are a total of six with three each for IPv4 and IPv6 with each one providing a different scope as to who can ping.
Also note that the CLI approach as described for Vista doesn’t work for W7 either. I tried fumbling around with the changed syntax for a little while before going back to the GUI and trying the File and Printer Sharing rules. That worked which was sufficient for me. Someone else gets to decipher the new CLI syntax.
Cheers,
Dave
Thank you Dave. I was scratching my head trying to figure out why ICMP Echo was not in the Core Networking rules.