B
brian
Here's the deal. I need a non-Active Directory client to
map a drive across the WAN to a Active Directory Domain
Controller. Ok, I'm also using a Net Use batch file in
startup for the login/mapping to take place.
Batch file script:
net use f:\\ 172.17.1.200\NewFolder /user
(e-mail address removed) password
This works, but my router's Access List is blocking a few
ports. That will stop this from this working in the
future. The access lists are as follows:
access-list 115 deny tcp any any eq 135
access-list 115 deny udp any any eq 135
access-list 115 deny udp any any eq netbios-ns
access-list 115 deny udp any any eq netbios-ss
access-list 115 deny udp any any eq netbios-dgm
access-list 115 deny tcp any any eq 139*****
access-list 115 deny tcp any any eq 445
access-list 115 deny tcp any any eq 593
access-list 115 deny tcp any any eq 4444
access-list 115 permit ip any any
The port I narrowed down to was 139. The script will run
with all the ACLs in place except for that one DENY
statement that I have marked with the asteriks.
My question, is there any way that I can get this login
batch to work on this 2000Pro client without using the 139
port? Changing the access-list is NOT an option, so I need
a work-around to have this batch file bypass the router
ACLs. I've tried using a LMHOST file which didn't seem to
work. LMHOST entry:
172.17.1.200 domaincontrl #PRE
Any help would be appreciated. Let's see how good you
MCSEs and network gurus are on this one.
..
map a drive across the WAN to a Active Directory Domain
Controller. Ok, I'm also using a Net Use batch file in
startup for the login/mapping to take place.
Batch file script:
net use f:\\ 172.17.1.200\NewFolder /user
(e-mail address removed) password
This works, but my router's Access List is blocking a few
ports. That will stop this from this working in the
future. The access lists are as follows:
access-list 115 deny tcp any any eq 135
access-list 115 deny udp any any eq 135
access-list 115 deny udp any any eq netbios-ns
access-list 115 deny udp any any eq netbios-ss
access-list 115 deny udp any any eq netbios-dgm
access-list 115 deny tcp any any eq 139*****
access-list 115 deny tcp any any eq 445
access-list 115 deny tcp any any eq 593
access-list 115 deny tcp any any eq 4444
access-list 115 permit ip any any
The port I narrowed down to was 139. The script will run
with all the ACLs in place except for that one DENY
statement that I have marked with the asteriks.
My question, is there any way that I can get this login
batch to work on this 2000Pro client without using the 139
port? Changing the access-list is NOT an option, so I need
a work-around to have this batch file bypass the router
ACLs. I've tried using a LMHOST file which didn't seem to
work. LMHOST entry:
172.17.1.200 domaincontrl #PRE
Any help would be appreciated. Let's see how good you
MCSEs and network gurus are on this one.
..