防火墙规则中阻止大于允许
netsh advfirewall firewall add rule添加新入站或出站防火墙规则
netsh advfirewall firewall add rule name="关闭TCP445端口" dir=in action=block protocol=TCP localport=445
说明dir=in|out入站或出站，action=allow|block允许或阻止，protocol=TCP|UDP

netsh advfirewall firewall set rule为现有规则的属性设置新值或修改启用状态
netsh advfirewall firewall set rule name="远程桌面端口" new dir=in action=allow protocol=TCP localport=20301
netsh advfirewall firewall set rule name="远程桌面端口" new enable=no
说明enable=no将该防火墙规则不启用,enable=yes为启用该规则

netsh advfirewall firewall delete rule删除所匹配的防火墙规则
netsh advfirewall firewall delete rule name="远程桌面端口"
netsh advfirewall firewall delete rule name=all protocol=tcp localport=80
说明：第一个是按照防护墙规则名称删除,第2个是按照端口删除,如果找到多个匹配项,则删除所有匹配规则