Re: Windows firewall Annoyances.
From: Alexander Muratov (alexvirtNOSPAM_at_yahoo.com)
Date: 02/08/05
- Next message: Greg: "Re: New MSSecure.XML Version 2005.02.08.0 Now Available"
- Previous message: mwaterer_at_hotmail.com: "Re: Is this a spoof?"
- In reply to: N. P.: "Windows firewall Annoyances."
- Next in thread: Karl Levinson [x y] mvp: "Re: Windows firewall Annoyances."
- Reply: Karl Levinson [x y] mvp: "Re: Windows firewall Annoyances."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 8 Feb 2005 17:09:19 -0500
N.P.
Looks like only MSFT knows how. ;) Look into description of critical update
of Win Firewall 886185 :
----------------------------------------------------------------------
SYMPTOMS
After you set up Windows Firewall in Microsoft Windows XP Service Pack 2
(SP2), you may discover that anyone on the Internet can access resources on
your computer when you use a dial-up connection to connect to the Internet.
For example, after creating an exception in Windows Firewall for File and
Printer Sharing, you may discover that anyone can access shared files and
printers.
Note Windows Firewall automatically selects the My network (subnet) only
scope option when you create an exception for File and Printer Sharing.
CAUSE
Because of the way that some dialing software configures routing tables,
Windows Firewall in Windows XP SP2 can sometimes interpret the whole
Internet to be a local subnet. This can let anyone on the Internet access a
Windows Firewall exception if the exception is configured to use the My
network (subnet) only scope option.
----------------------------------------------------------------------
Regards,
Alex.
"N. P." <Not available> wrote in message
news:e%23QTd$hDFHA.3120@TK2MSFTNGP12.phx.gbl...
> Hello,
> First of all I want to ask how does Windows Firewall (XP sp2) determine
> which connection is on the local subnet and which one is not, in order to
> allow the right traffic. For example, if I have two network cards (lan
> cards) and one of them is connected to my home network and the other to
> the Internet, how does it know which one is the local network and which
> one is not, so that my file and print shares will be protected from
> Internet hackers?
> Another issue I have is with the Advanced tab. There you can set
> exceptions per connection. However, the settings dialogbox for setting
> exceptions per connection basis is very confusing. What does it mean for
> example internal and external port? What are the Services and why is there
> such a thing as a Services tab? Why does not it look like the interface of
> the oordinary exceptions tab? Why is it different in the Advanced tab? And
> why does not it allow me to restrict traffic based on originating ip
> address, like the ordinary Exceptions tab? And why does it say, enter the
> ip address of the computer hosting the service? Isn't this a personal
> firewall, so why should I enter the address of another computer to protect
> a service on it? And why are there all these predetermined services?
> Generally why is it confusing, different from the Exceptions tab, meaning
> does not allow me to have the same options and why no context sensitive
> help? Why doesn't it allow me to specify a program by file name and
> finally the example it gives for specifying the computer address for
> hosting the service is wrong: It says separate the ip addresses by commas,
> whilst the example gives two addresses that are the same and a subnet mask
> which is separated by a / and not by a comma.
> Thanks,
> N. P.
>
>
- Next message: Greg: "Re: New MSSecure.XML Version 2005.02.08.0 Now Available"
- Previous message: mwaterer_at_hotmail.com: "Re: Is this a spoof?"
- In reply to: N. P.: "Windows firewall Annoyances."
- Next in thread: Karl Levinson [x y] mvp: "Re: Windows firewall Annoyances."
- Reply: Karl Levinson [x y] mvp: "Re: Windows firewall Annoyances."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
