Windows Firewall (SP2) & VPN
From: Mike (vnvjeep_at_hotmail.com)
Date: 09/16/04
- Next message: David H. Lipman: "Re: Can I deny access to USB storage but allow USB user interface devi"
- Previous message: Carey Frisch [MVP]: "Re: Can I deny access to USB storage but allow USB user interface devi"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 16 Sep 2004 14:18:54 -0700
Hi there,
I'm hitting my head hard on this one. I've set group
policy to disable Windows Firewall for boxes on our
domain (in the domain profile), but for the default
profile, I've set them to be on for when they're off our
domain. This seems to be working just fine.
I'm running into an interesting problem when I'm trying
to VPN into our lan from the outside. I would have
assumed that by VPN'ing in, the Windows Firewall would
have shut itself off for the VPN side, but keep itself
running for the internet side, so the machine would act
as if it's just a client sitting on the lan. Not so!
The Windows Firewall is up & running, even when connected
to VPN, and says "Windows Firewall is using your non-
domain settings." So when this box VPNs in, I can't even
see the dang thing!
In my VPN IP settings, I have even changed the DNS Suffix
to reflect our internal lan domain name, with no luck.
If I change the internet nic side to use the internal lan
domain name for the DNS suffix, the firewall shuts itself
off, and behaves itself like a good little puppy dog.
This, HOWEVER, leaves it wide open for exploits & attacks!
It's theoretically working, but just not correctly!?
Has anyone figured out how to VPN in, keeping itself
protected on the outside, but opening itself up for the
internal side?
Thank you!
Mike
- Next message: David H. Lipman: "Re: Can I deny access to USB storage but allow USB user interface devi"
- Previous message: Carey Frisch [MVP]: "Re: Can I deny access to USB storage but allow USB user interface devi"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
