Re: Win2k Pro Local Security Policy Question.

From: Steven L Umbach (sumbach_at_ameritech.net)
Date: 06/06/03 

Date: Fri, 06 Jun 2003 01:15:53 GMT

    Great Mike. Yeah, with the advent of the built in firewall - ICF in XP
and now Server 2003, that is one of the first things I ask people to look at
when they are having connectivity issues. --- Steve

"Mike Klick" <mike@grayce.net> wrote in message
news:O$Xr5n7KDHA.2364@TK2MSFTNGP09.phx.gbl...
> Steve:
>
> AHHHHH! I can't believe it. Norton Personal Firewall was blocking it and
not
> telling me. Also, it crashed and I couldn't make any changes even as an
> Adminstrator. Giving me Access Denied. I spent a long time trying to
figure
> this out.
>
> I wonder one day if we are going to secure ourselves into a corner and not
> be able to get out!
>
> I appreciate the input.
>
> Mike
>
> "Steven L Umbach" <n9rou@attbi.com> wrote in message
> news:jLKDa.1122741$F1.134943@sccrnsc04...
> > Make sure that there is not a personal firewall on that computer
> > blocking access. Check the client settings for proper preshared
> > key/certificate (including trusted root CA) if you are using one. Check
> that
> > it is using the right protocol l2tp/pptp for your situation and that any
> > firewall ip rules are not blocking access. If you are using l2tp,
ipsecmon
> > may be of some help on the client. --- Steve
> >
> > "Mike Klick" <mike@grayce.net> wrote in message
> > news:eQxJ#iuKDHA.208@TK2MSFTNGP09.phx.gbl...
> > > I have several Win2k Pro machines that est. a VPN tunnel with a
Netgear
> > > Firewall/Router fine. One however, even with identical setting in the
> > Policy
> > > does not.
> > >
> > > When I ping (ping -t) the appropriate IP address, I get Negotiating
> > Security
> > > message, but traffic NEVER leaves the box. It is like it doesn't know
to
> > go
> > > out the WAN connection. There are no others. (I have made sure the
> Policy
> > > uses the WAN connection. Have checked it many times.)
> > >
> > > The Policy sets up Filter Properties so that you ping the Internal LAN
> on
> > > the other side of Router. i.e., 192.168.1.1.
> > >
> > > I've tried using Netdiag. Any other suggestions?
> > >
> > > TIA
> > >
> > > Mike
> > >
> > >
> > >
> >
> >
>
>

Relevant Pages

  • RE: Auto Account Disable Warning
    ... Hi Steve, ... We can create the Policy as the following steps. ... the user will get the warning window automatically when the password ... Thanks for using Microsoft News Group! ...
    (microsoft.public.security)
  • Re: Password Policy
    ... Steve, my apologies! ... I was looking at the wrong posting! ... > of any policy change and force some to also. ... >> Derek Melber ...
    (microsoft.public.win2000.group_policy)
  • Re: External/Internal mail problem
    ... It is used for newsgroup ... "Steve I" wrote in message ... my recepient policy i have my exteral address set as ... >purposes only. ...
    (microsoft.public.exchange.setup)
  • Re: Word: Prompt before deleting Text - remove
    ... >I'm reading this question as you saying there is a policy that encourages ... Fair dinkum mate! ... Steve Hudson - Word Heretic ... >I did miss you acknowledging the positive side, other than that it saves you ...
    (microsoft.public.word.customization.menustoolbars)
  • Re: Software firewall necessary?
    ... sharing capabilities got corrupted. ... network settings with ZA completely out of the loop. ... Thanks for the response, Steve T. ... > A personal firewall is just one more thing to give you a problem, ...
    (microsoft.public.windowsxp.network_web)