Re: Firewall issues on dual NIC server

I'd already looked at that.
In my Windows Server 2008 machine, it lists:
* Local area network
* Remote access
* Wireless
So it doesn't seem to help me when I want to apply the rules to only one of
two NICs, because they are both consider a LAN.

"Daniel Petri <MVP>" wrote:

First of all, are you sure you didn't delete any of the default FW rules? I
would restore to defaults by using the Windows FW with Advanced Security
context menu.

As for your question - each rule has an advanced tab. In it, you can click
on the Interfaces Customize button, and bingo.

--
Sincerely,

Daniel Petri
MVP, Senior IT consultant, trainer
www.petri.co.il

"Scott S." <ScottS@xxxxxxxxxxxxxxxx> wrote in message
news:16856728-3592-437B-9EF9-FF38BD21030F@xxxxxxxxxxxxxxxx
I've just setup a new Windows Web Server 2008 machine.
I installed the OS and joined it to my domain, setup some shared folders
and
copied some files on to it. I had it running really well on the LAN.
Then I insttaled a 2nd NIC which I connected directly to our external
router
and assigned it a static internet IP.
I could see the preliminary "under construction" website and things were
looking good. I then ran a port scan on the external IP and it had lots
of
stuff open.
I went into "Windows Firewall with Advanced Security" and found LOTS of
rules to allow "Core Networking" and "File and Printer Sharing". The Core
networking stuff looked fine, but the "File and Printer Sharing"
definitions
existed 3 times each, one for each profile "Private", "Domain", and
"Public".
So I remeoved the Public versions of each of those.
The the port scan only showed port 80 open ... again I thought all was
well.
But now I can no longer find that machine or access its shares from the
LAN
NIC!
But it can get to the other machines on the LAN.

Network and Sharing center shows the LAN NIC and a "Domain network" with
"Local only" access and the Internet NIC as "Public network" with "Local
and
Internet" access. It also shows Network discovery as "Custom" and File
sharing a "On".

I tried turing the firewall off for the Private and Domain profiles, but
it
makes no difference. No matter what I try, and I've tried a lot, I get
one
of 3 things:
1) Nothing works
2) Everything works but leaves lots of open ports it Internet
3) Internet access is perfect but inbound LAN access doesn't work,
outbound
ok.

Does anybody know how to get the firewall to either guard just the
Internet
NIC, or how to have different rules for each NIC?

.

Relevant Pages

  • Re: Boot-up question on SBS2K3
    ... > The router separates you from the Internet. ... > network. ... >>>> 2 Nics, broadband cable modem connected into the external NIC, ...
    (microsoft.public.windows.server.sbs)
  • Re: Client PC cannot access internet
    ... Server can access the internet. ... Ethernet adapter Local Area Network: ... Have you checked the binding order of the NICs? ... the Internet Connection Wizard and enabled RAS. ...
    (microsoft.public.backoffice.smallbiz2000)
  • Re: Multiple IP addresses outside of sbs
    ... make it even more difficult for someone to get into your network. ... The dual nics are pretty irrelevant to my current issue. ... between the internet and the sbs server so the the setup works. ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 2k3 and Additional Servers
    ... I have not tried exchanging the internal network switch for a different one. ... Are you up to date with the latest nic drivers for both nics? ... database server that is not connected directly to the internet and I need ...
    (microsoft.public.windows.server.sbs)
  • Re: SBS 2k3 and Additional Servers
    ... I have not tried exchanging the internal network switch for a different one. ... Are you up to date with the latest nic drivers for both nics? ... one attached to the internal SBS network for domain ... database server that is not connected directly to the internet and I need ...
    (microsoft.public.windows.server.sbs)