Re: XPsp2 - firewall enable/disable based on net

From: Fritz (fritz_at_biteme.net)
Date: 09/09/04

Next message: anonymous_at_discussions.microsoft.com: "Re: SP2 and Automatic Update"
Previous message: Keith: "RE: "Access Denied" trying to read previous XP hard drive"
In reply to: hutch606: "Re: XPsp2 - firewall enable/disable based on net"
Next in thread: David Beder [MSFT]: "Re: XPsp2 - firewall enable/disable based on net"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Thu, 9 Sep 2004 13:05:09 -0400

That's why you configure exceptions for the local IP address range. Any
requests from other addresses will be denied.

"hutch606" <hutch606@discussions.microsoft.com> wrote in message
news:00A84446-50C7-4977-B117-4793131CA59D@microsoft.com...
> Ports must be available for sms and other software while on corporate
> network. However, I do not want them open while roaming (cable modem,
> hotels,
> etc.).
>
> I realize that it would be easier to leave it on at all times; if that was
> feasible, that would have happened. However, as that is not the case, I
> posted to see if anybody had helpful suggestions (not the usual mindless
> "leave it on" comments).
>
>
> "Fritz" wrote:
>
>> I'd leave the Windows Firewall enabled at all times then. It'll make
>> your
>> life easier.
>>
>> "hutch606" <hutch606@discussions.microsoft.com> wrote in message
>> news:7B7C3541-B59D-43F7-9C02-8B715D9BE111@microsoft.com...
>> > Deploying XP SP2 to laptops. While attached to internal network, they
>> > need
>> > no
>> > software firewall. However, they travel and connect remotely and do
>> > require
>> > the ICF to be enabled. They will be connecting both via wired and
>> > wireless
>> > interfaces.
>> >
>> > Aside from establishing a cheezy scheduled task to enable/disable ICF
>> > based
>> > on local network addresses (192.168.1.0/24 is our network)--have any
>> > ideas
>> > on
>> > how to accomplish this in a more professional manner? Thanks!!!
>>
>>
>>

Next message: anonymous_at_discussions.microsoft.com: "Re: SP2 and Automatic Update"
Previous message: Keith: "RE: "Access Denied" trying to read previous XP hard drive"
In reply to: hutch606: "Re: XPsp2 - firewall enable/disable based on net"
Next in thread: David Beder [MSFT]: "Re: XPsp2 - firewall enable/disable based on net"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Question about Remote Assistance and TCP Ports used
... I'm currently starting a Pilot project of SMS 2003 within our organization ... were one important point is remote support to our users. ... This is working fine with the exceptions but, due that we try to keep our ... I know that with the SMS remote Tools we could use fixed Ports, ...
(microsoft.public.sms.tools)
Firewall ports for AD domains in 2 different forests--SMS indirect
... the below in relation to Active Directory only before I have our Headquarters ... Firewall Team open the ports on the routers: ... Question at bottom and response from SMS Newsgroup below. ...
(microsoft.public.windows.server.active_directory)
RE: Microsoft Windows SBS 2003 Communication Issues
... I can't get past step three, their is NO Exceptions tab? ... Click "Windows Firewall". ... Identifying and opening ports ... > This newsgroup only focuses on SBS technical issues. ...
(microsoft.public.windows.server.sbs)
RE: SMS 2.0 & winXP sp2
... "SMS Administrator console: Windows Firewall has three settings: On, ... When you select the Don’t allow exceptions check box, ...
(microsoft.public.sms.admin)
Re: SMS 2003 w/SP1 without opening WINXP SP2 firewall ports?
... here is a link to the ports SMS uses: ... I wouldn't suggest scripting something to open up the ports. ... The clients ...
(microsoft.public.sms.admin)