We are having a strange issue with Windows Firewall setting.
The logging file path cannot be set. After I have enabled the Logging setting and click on OK to save the setting. When I open up logging settings again, the logging file path check box is set back to "Not Configured".
I have ensured the Firewall folder has the correct permission (Modify permission) for the firewall service but I am still seeing this strange behavior.
Any idea what is causing this issue?
Tried this in my environment with similar results. Taking a look at this TechNet discussion, it appears that option doesn't actually map to a real setting. The correct key to enable logging appears to be:
Administrative Templates > Network > Network Connections > Windows Firewall > Domain Profile > Windows Firewall: Allow logging
While this is odd, I believe I can offer an explanation for this behavior. Microsoft simply duplicated the Windows firewall GUI for use in the Group Policy editor. Most of the settings in the new (Vista+) version of Windows firewall are new additions, with a few exceptions, logging being one of them. Logging was an option in XP SP2, as show by the compatibility list on that policy:
Windows Firewall: Allow logging -> Supported on: At least Windows XP Professional with SP2
Most likely, Microsoft just didn't want to break the forward compatibility on this existing setting, and instead, just disabled the corresponding checkbox in the newer GUI configuration. You may still need to configure the other options aside from the logging locations in order for logging to function properly.
