Re: Firewall Newbie Help (PS)

From: xxxasa (x@y.z.a)
Date: 07/28/02 

From: "xxxasa" <x@y.z.a>
Date: Sun, 28 Jul 2002 18:44:43 +0100

Thanks Tony,

So I presume that proxies have to be set up and are not running on my Win 2K
Pro box by default.

Thanks for the web link too.

I don't mind logging into the server, and from Win2K to Win 2K AS isn't a
problem, but from XP on the laptop it does prompt me. It's more for my wife
who needs to do some company bits.

Thanks again

"Tony Whitmore" <tony_whitmore@nospamhotmail.com> wrote in message
news:gTU09.4409$SA3.189832@wards...
> Hi xxxasa,
>
> You will only need a proxy if you *want* to access your files from the
> internet. A proxy server allows computers not connected directly to a
> computer resource (like your files) to access them via another computer
with
> a proxy server running on it. Basically, the client connects to the proxy
> server, the proxy connects to the resource, the resouce sends the data to
> the proxy and the proxy sends the data to the client. I got he impression
> that this isn't what you want, only to access your file server B from
> anywhere on your local network.
>
> If you have set up ZoneAlarm as you say, then you should be protected from
> outside connections. You can check whether connections to your computer
are
> possible from the internet using web based port scanners like
> www.pcflank.com. This service should not be able to connect to any port on
> your computer, especially port 139 which is used by the File and Printer
> Sharing service - the one you will use to access your files on server B.
If
> no outside connections are possible , then all the machines on your local
> network are protected.
>
> As far as not "messing around with logins" goes, by using Windows 2000 and
> Windows XP you may have problems. This is because under these operating
> systems, the File and Printer Sharing service requires a username and
> password to be entered before access to files can be granted. Windows 9x
> didn't require the same username and password authentication to allow
> connections, but where less secure as a consequence.
>
> When you try to connect to your server B, you will be prompted to enter
> username and password. This must be the username and password for a valid
> user account already created on server B. I would recommend you create a
> username and password just for using when you access your files. Under
> Windows 2000 and XP (but not 9x) you can enter this when you try to
connect
> to a share on server B.
>
> If you *really* can't bear to enter this username and password every time
> you connect to server B, there is a workaround. However, you may find that
> it takes more work to maintain than the method above! If the username and
> password combination *in use* on laptop C or computer A is also a valid
> username on server B then you will connect without any "messing around"!
The
> downside is that all the usernames under which you logon to computers A or
C
> and access file shares have to be created on server B as well. When you
> change your password on one system, it has to be changed on the other two
as
> well, otherwise you will have to enter when you try to connect to a share.
> (In large networks a separate domain logon server manages the valid
> usernames and passwords, and saves having to synchronise passwords
manually
> but this might not be appropriate for you.)
>
> Hope this is of some use to you,
>
> Cheers,
>
> Tony Whitmore
>
>
>
> "xxxasa" <x@y.z.a> wrote in message
> news:03Q09.470$ES.5152@newsfep3-gui.server.ntli.net...
>
> > > Layered view
> > > |||
> > > [fw]=X====[x]====Y
> > > PC1 hub PC2 (server) right?
> > >
> > >
> > > | | | (free connections)
> > > [fw]=X=== [x]==== Y
> > > ^
> > > firewall right?
>
> >
> > That's the sketch. I don't know if I have a proxy. I've just set up
> network
> > settings using the default methods in Win2K and WinXP.
> >
> > I'm running Zone Alarm and have set the local zone as trusted and the
> > internet zone as high.
> >
> > BUT it is very important to me that I can reach files on my network from
> any
> > other part without messing around with logins, but that no-one can reach
> > them from outside.
>
>
>

Relevant Pages

  • Re: Network shares and printing
    ... Click Start, click Control Panel, click Network and Internet Connections, ... Type the correct DNS address in the Preferred DNS server box. ... shared drive and entering proper username and password. ...
    (microsoft.public.windowsxp.network_web)
  • Networking RH9 on NT Proxy server
    ... our network is basically this. ... which goes to NT4 Proxy server, ... for the DSL and te Proxy. ... The other windows machines can see the RH9 server on the Network ...
    (comp.os.linux.networking)
  • Re: Offline Patching
    ... Seems our proxy ... server does not like the URLs with the username/password embedded. ... Network B is tied to Network A only through ... which can access a local web server with Internet access can download ...
    (comp.unix.solaris)
  • Re: The Policy of this system does not permit you to logon interactively
    ... We installed a Windows 2003 server as a domain controller, ... computers to the network. ... computer, and not the entire network, enter their username in the box ...
    (microsoft.public.windowsxp.security_admin)
  • Re: ISA 2004
    ... We use a static route on the server to direct http traffic to a router on ... We can connect to this remote site if you are an administrator and the proxy ... ISA Server detected routes through the network adapter Server ...
    (microsoft.public.backoffice.smallbiz)