exists key
(
if
(
exists key "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall" of registry
)
then
(
"HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\"
)
else
(
"HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\"
)
&
(
if
(
current profile type of firewall = domain firewall profile type
)
then
(
"DomainProfile"
)
else
(
"StandardProfile"
)
)
)
whose
(
value "DoNotAllowExceptions" of it = 1
)
of registry OR
(
(
not exists globally open port whose
(
port of it as string =
(
value "ListenPort" of key "HKLM\SOFTWARE\BigFix\EnterpriseClient\GlobalOptions" of registry as string
)
AND protocol of it = udp AND enabled of it
)
of it AND not exists authorized application whose
(
process image file name of it as lowercase ends with "besclient.exe" AND enabled of it
)
of it
)
of current profile of local policy of firewall AND exists internet connection firewall whose
(
enabled of it AND not exists port mapping whose
(
enabled of it AND protocol of it = "udp" AND internal port of it as string =
(
value "ListenPort" of key "HKEY_LOCAL_MACHINE\SOFTWARE\BigFix\EnterpriseClient\GlobalOptions" of registry
)
as string
)
of it
)
of adapters of network
)
exists key (if (exists key "HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall" of registry) then ("HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\") else ("HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\") & (if (current profile type of firewall = domain firewall profile type) then ("DomainProfile") else ("StandardProfile"))) whose (value "DoNotAllowExceptions" of it = 1) of registry OR ((not exists globally open port whose (port of it as string = (value "ListenPort" of key "HKLM\SOFTWARE\BigFix\EnterpriseClient\GlobalOptions" of registry as string) AND protocol of it = udp AND enabled of it) of it AND not exists authorized application whose (process image file name of it as lowercase ends with "besclient.exe" AND enabled of it) of it) of current profile of local policy of firewall AND exists internet connection firewall whose (enabled of it AND not exists port mapping whose (enabled of it AND protocol of it = "udp" AND internal port of it as string = (value "ListenPort" of key "HKEY_LOCAL_MACHINE\SOFTWARE\BigFix\EnterpriseClient\GlobalOptions" of registry) as string) of it) of adapters of network)