Re: System fails Shields Up ping test.

From: Doug Knox MS-MVP (dknox_at_mvps.org)
Date: 11/15/04 

Date: Sun, 14 Nov 2004 19:04:06 -0500

You'll need to add the IcmpSettings sub-key. Highlight the StandardProfile sub-key, right click it and select New, Key. Name it IcmpSettings. The follow the instructions for adding the AllowInboundEchoRequest value. 

-- 
Doug Knox, MS-MVP Windows Media Center\Windows Powered Smart Display
Win 95/98/Me/XP Tweaks and Fixes
http://www.dougknox.com
--------------------------------
Per user Group Policy Restrictions for XP Home and XP Pro
http://www.dougknox.com/xp/utils/xp_securityconsole.htm
--------------------------------
Please reply only to the newsgroup so all may benefit.
Unsolicited e-mail is not answered.
 
"Jack Gillis" <XXXXXXXX@widomaker.com> wrote in message news:10pfpqppopk6a18@corp.supernews.com...
> OK Doug.
> 
> I drilled down to \FirewallPolicy\StandardProfile but did not have 
> IcmpSettings, only AuthorizedApplications\List and GloballyOpenPorts.  I 
> found only one reference in the registry for Icmp and it had to do with 
> EnableIcmpRedirect or something like that.
> 
> Do I have a bad registry?
> 
> Yes, I did create a restore point before entering regedit but made no 
> changes to it.
> 
> "Doug Knox MS-MVP" <dknox@mvps.org> wrote in message 
> news:eu3okOpyEHA.1292@TK2MSFTNGP10.phx.gbl...
> Jack,
> 
> You can try this.  Click Start, Run and enter REGEDIT  Go to:
> 
> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\IcmpSettings
> 
> Right click in a blank area of the right pane, select New, DWord value 
> and name the new value AllowInboundEchoRequest.  Leave the value set at 
> 0 (zero).   Now, open a Command Prompt window and enter NETSH  FIREWALL 
> RESET    Then run the Shields Up test again.
> 
> -- 
> Doug Knox, MS-MVP Windows Media Center\Windows Powered Smart Display
> Win 95/98/Me/XP Tweaks and Fixes
> http://www.dougknox.com
> --------------------------------
> Per user Group Policy Restrictions for XP Home and XP Pro
> http://www.dougknox.com/xp/utils/xp_securityconsole.htm
> --------------------------------
> Please reply only to the newsgroup so all may benefit.
> Unsolicited e-mail is not answered.
> 
> "Jack Gillis" <XXXXXXXX@widomaker.com> wrote in message 
> news:10pffl7mpnh03c9@corp.supernews.com...
>> Thanks, Doug.
>>
>> I looked at Control Pane/Windows Firewall/Advanced and the ICMP
>> settings.  None were checked so I assume that all were not permitted
>> exceptions.  Or do I have it backwards -- all were permitted 
>> exceptions?
>>
>> BTW, The  Do Not Allow Exceptions button is not set in the General 
>> Tab.
>>
>> I hate to go playing around with settings I know little about.
>>
>> Thanks again.
>>
>> "Doug Knox MS-MVP" <dknox@mvps.org> wrote in message
>> news:esSZb9lyEHA.1400@TK2MSFTNGP11.phx.gbl...
>> If you're running XP SP2, go to Control Panel, Windows Firewall.  Go 
>> to
>> the Advanced tab and click the Settings button under ICMP.
>>
>> -- 
>> Doug Knox, MS-MVP Windows Media Center\Windows Powered Smart Display
>> Win 95/98/Me/XP Tweaks and Fixes
>> http://www.dougknox.com
>> --------------------------------
>> Per user Group Policy Restrictions for XP Home and XP Pro
>> http://www.dougknox.com/xp/utils/xp_securityconsole.htm
>> --------------------------------
>> Please reply only to the newsgroup so all may benefit.
>> Unsolicited e-mail is not answered.
>>
>> "Jack Gillis" <XXXXXXXX@widomaker.com> wrote in message
>> news:10peooqi2mr0c7f@corp.supernews.com...
>>>I normally connect to my DSL line through a router but it decided it
>>> didn't want to work anymore.  So while waiting to get a replacement, 
>>> I
>>> connected my XP SP2 system directly to my DSL modem and established a
>>> connection to my ISP.
>>>
>>> I decided to run Shields Up and found all ports 'stealthed' but got a
>>> 'Failed' report because Shields Up received a reply to its ping of my
>>> system.  I have the DSL connection firewalled by XP's firewall.
>>>
>>> What do else might I do to prevent my system from replying to ping
>>> requests?  Or, should I worry?
>>>
>>> Thank you very much.
>>>
>>>
>>
>> 
> 
>
Loading