Firewall

Problems connecting to Tiny PXE Server may be due to incorrect firewall settings. Consider temporarily disabling your firewall during testing, then as soon as your setup is working your firewall can be re-activated and configured.

The following ports will need to be allowed for incoming connections -

Service/Protocol Port Port Protocol
DHCP 67 UDP
DNS 53 UDP
HTTP 80 TCP
Proxy DHCP 4011 UDP
TFTP 69 UDP

TFTP only uses port 69 to establish a request - the response will take place over random ports. This makes it difficult to set up a firewall for TFTP using port exceptions. It is however possible to configure a firewall for TFTP connections by allowing port 69 to establish the request, then set a firewall exception for the Tiny PXE Server executable.

I have no idea which ports need to be open for NFS to function - this is required from some Linux distributions including Ubuntu.

Configure the Windows 7 firewall to allow specified ports

  1. Goto Start > Control Panel and select Windows Firewall (Note - the view may need to be changed to either Large icons or Small icons).
  1. Select Advanced settings -

  1. Select Inbound Rules in the left pane and then click on New rule... in right pane -

  1. The New Inbound Rule Wizard should now be displayed. Select Rule Type as Port then click on the Next button.
  1. In the Protocols and Ports section select UDP and enter 53, 67, 69, 4011 in the Specific local ports: box, then click on the Next button.
  1. In the Action section ensure Allow the connection is enabled then click on the Next button.
  1. Select whichever option applies to your own setup in the Profile section (or select all), then click on the Next button.
  1. Enter a name in the relevant box then click on the Finish button.
Repeat this process to allow access for TCP Port 80, amending the instructions step 5 - In the Protocols and Ports section select TCP and enter 80 in the Specific local ports: box, then click on the Next button.

Configure the Windows 7 firewall to allow pxesrv.exe

  1. Goto Start > Control Panel and select Windows Firewall (Note - the view may need to be changed to either Large icons or Small icons).
  1. Select Advanced settings -

  1. Select Inbound Rules in the left pane and then click on New rule... in right pane -

  1. The New Inbound Rule Wizard should now be displayed. Select Rule Type as Program then click on the Next button.
  1. Set This program path: as the path to pxesrv.exe, then click on the Next button.
  1. Select Allow the connection, then click on the Next button.
  1. Select whichever option applies to your own setup in the Profile section (or select all), then click on the Next button.
  1. Enter a name (e.g. pxesrv) in the relevant box then click on the Finish button.
The Protocol type and Local Port should have been set to Any.

Document date - 28th February 2017(DRAFT)