最近项目中需要通过程序自动设置windows 防火墙，查了一下资料，可以通过命令行netsh firewall来实现。封装了一个类来实现对允许放开的程序(Allowed program)进行管理。管理其他内容比如放开端口等方法是类似的。
程序中用到一个公共类 RunProcess，这个类可从我的另一篇文章 一个C#写的调用外部进程类 获得

namespace WinFirewall
{

public enum TScope
{
ALL,
SUBNET,
CUSTOM,
}

public enum TMode
{
ENABLE,
DISABLE,
}

/**//// <summary>
/// Manage the allowed program with the Windows Firewall.
/// </summary>
public class AllowedProgram
{
Set AllowedProgram Help#region Set AllowedProgram Help
/**//*
set allowedprogram

[ program = ] path
[ [ name = ] name
[ mode = ] ENABLE|DISABLE
[ scope = ] ALL|SUBNET|CUSTOM
[ addresses = ] addresses
[ profile = ] CURRENT|DOMAIN|STANDARD|ALL ]

Sets firewall allowed program configuration.

Parameters:

program - Program path and file name.

name - Program name (optional).

mode - Program mode (optional).
ENABLE - Allow through firewall (default).
DISABLE - Do not allow through firewall.

scope - Program scope (optional).
ALL - Allow all traffic through firewall (default).
SUBNET - Allow only local network (subnet) traffic through firewall.
CUSTOM - Allow only specified traffic through firewall.

addresses - Custom scope addresses (optional).

profile - Configuration profile (optional).
CURRENT - Current profile (default).
DOMAIN - Domain profile.
STANDARD - Standard profile.
ALL - All profiles.

Remarks: ''scope'' must be ''CUSTOM'' to specify ''addresses''.

Examples:

set allowedprogram C:\MyApp\MyApp.exe MyApp ENABLE

set allowedprogram C:\MyApp\MyApp.exe MyApp DISABLE

set allowedprogram C:\MyApp\MyApp.exe MyApp ENABLE CUSTOM

157.60.0.1,172.16.0.0/16,10.0.0.0/255.0.0.0,LocalSubnet
set allowedprogram program = C:\MyApp\MyApp.exe name = MyApp mode = ENABLE

set allowedprogram program = C:\MyApp\MyApp.exe name = MyApp mode = DISABLE
set allowedprogram program = C:\MyApp\MyApp.exe name = MyApp mode = ENABLE

scope = CUSTOM addresses =
157.60.0.1,172.16.0.0/16,10.0.0.0/255.0.0.0,LocalSubnet
*/
#endregion

private field#region private field
private String m_Program;
private String m_Name;
private TScope m_Scope = TScope.ALL;
private TMode m_Mode = TMode.ENABLE;
private String m_Address;
#endregion

public property#region public property
/**//// <summary>
/// Program path and file name.
/// </summary>
public String Program
{
get
{
return m_Program;
}

set
{
m_Program = value;
}
}

/**//// <summary>
/// Program name (optional).
/// </summary>
public String Name
{
get
{
return m_Name;
}

set
{
m_Name = value;
}
}

/**//// <summary>
/// Program scope (optional).
/// ALL - Allow all traffic through firewall (default).
/// SUBNET - Allow only local network (subnet) traffic through firewall.
/// CUSTOM - Allow only specified traffic through firewall. /// </summary>
public TScope Scope
{
get
{
return m_Scope;
}

set
{
m_Scope = value;
}
}

/**//// <summary>
/// Program mode (optional).
/// ENABLE - Allow throu