winxp VPN Server/client windows firewall problems

[r0d.usenet]

Using microsoft's built in vpn server and vpn client
set up:
comp 1 win xp professional service pack 2 : server
comp 1 has access to home network .
comp 2 win xp home service pack 2 : client

When windows firewall is off on both machines VPN connection works
perfectly and I have access to home network.
When I turn firewall on in client computer the VPN connection works,
but I am unable to browse the shared folders in the network and even
in comp1. The firewall is blocking something. I have already put in
exceptions for port 1723, 47. But still no lock... When I look at
firewall log I this is what I see..


2007-08-14 17:28:38 CLOSE TCP 192.168.0.17 192.168.0.1 1395 52869 - -
- - - - - - -
2007-08-14 17:28:39 OPEN TCP 192.168.0.17 192.168.0.1 1398 52869 - -
-
- - - - - -
2007-08-14 17:28:47 OPEN TCP 192.168.0.16 68.228.61.86 1399 445 - - -
- - - - - -
2007-08-14 17:28:47 DROP UDP 192.168.0.10 192.168.0.17 137 137 96 - -
- - - - - RECEIVE
2007-08-14 17:28:48 DROP UDP 192.168.0.10 192.168.0.17 137 137 96 - -
- - - - - RECEIVE
2007-08-14 17:28:48 DROP UDP 192.168.0.10 192.168.0.17 137 137 96 - -
- - - - - RECEIVE
2007-08-14 17:28:49 DROP UDP 192.168.0.17 68.228.61.86 137 137 78 - -
- - - - - SEND
2007-08-14 17:28:51 DROP UDP 192.168.0.17 68.228.61.86 137 137 78 - -
- - - - - SEND
2007-08-14 17:28:52 DROP UDP 192.168.0.17 68.228.61.86 137 137 78 - -
- - - - - SEND


I am not sure why it is dropping udp packets on port 137?????


If any one can help me out, I would really really appreciate it. MY
goal is to have vpn working with windows firewall on on server
computer and client computer... I searched all over the place for a
solution with no luck so Now I ask you guys .


Thanks,
r0d

 

[Sooner Al [MVP]]

Using microsoft's built in vpn server and vpn client
set up:
comp 1 win xp professional service pack 2 : server
comp 1 has access to home network .
comp 2 win xp home service pack 2 : client

When windows firewall is off on both machines VPN connection works
perfectly and I have access to home network.
When I turn firewall on in client computer the VPN connection works,
but I am unable to browse the shared folders in the network and even
in comp1. The firewall is blocking something. I have already put in
exceptions for port 1723, 47. But still no lock... When I look at
firewall log I this is what I see..


2007-08-14 17:28:38 CLOSE TCP 192.168.0.17 192.168.0.1 1395 52869 - -
- - - - - - -
2007-08-14 17:28:39 OPEN TCP 192.168.0.17 192.168.0.1 1398 52869 - -
-
- - - - - -
2007-08-14 17:28:47 OPEN TCP 192.168.0.16 68.228.61.86 1399 445 - - -
- - - - - -
2007-08-14 17:28:47 DROP UDP 192.168.0.10 192.168.0.17 137 137 96 - -
- - - - - RECEIVE
2007-08-14 17:28:48 DROP UDP 192.168.0.10 192.168.0.17 137 137 96 - -
- - - - - RECEIVE
2007-08-14 17:28:48 DROP UDP 192.168.0.10 192.168.0.17 137 137 96 - -
- - - - - RECEIVE
2007-08-14 17:28:49 DROP UDP 192.168.0.17 68.228.61.86 137 137 78 - -
- - - - - SEND
2007-08-14 17:28:51 DROP UDP 192.168.0.17 68.228.61.86 137 137 78 - -
- - - - - SEND
2007-08-14 17:28:52 DROP UDP 192.168.0.17 68.228.61.86 137 137 78 - -
- - - - - SEND


I am not sure why it is dropping udp packets on port 137?????


If any one can help me out, I would really really appreciate it. MY
goal is to have vpn working with windows firewall on on server
computer and client computer... I searched all over the place for a
solution with no luck so Now I ask you guys .


Thanks,
r0d

You might look at implementing a lmhosts file on the client(s). I use one to
access my home network on occasion with the PPTP VPN server and client
functions built-in to XP/Vista. You will then be able to use the UNC to
access shares, ie. \\ComputerName\ShareName. Here is an example...

http://theillustratednetwork.mvps.org/Vista/PPTP/Examplelmhosts.txt

More information from MS...

http://support.microsoft.com/kb/314884/en-us

In general you will not be able to browse through the VPN tunnel...

--

Al Jarvi (MS-MVP Windows Networking)

Please post *ALL* questions and replies to the news group for the
mutual benefit of all of us...
The MS-MVP Program - http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no
rights...
How to ask a question
http://support.microsoft.com/KB/555375

 

[r0d]

You might look at implementing a lmhosts file on the client(s). I use one to
access my home network on occasion with the PPTP VPN server and client
functions built-in to XP/Vista. You will then be able to use the UNC to
access shares, ie. \\ComputerName\ShareName. Here is an example...

http://theillustratednetwork.mvps.org/Vista/PPTP/Examplelmhosts.txt

More information from MS...

http://support.microsoft.com/kb/314884/en-us

In general you will not be able to browse through the VPN tunnel...

--

Al Jarvi (MS-MVP Windows Networking)

Please post *ALL* questions and replies to the news group for the
mutual benefit of all of us...
The MS-MVP Program -http://mvp.support.microsoft.com
This posting is provided "AS IS" with no warranties, and confers no
rights...
How to ask a questionhttp://support.microsoft.com/KB/555375- Hide quoted text -

- Show quoted text -

Sooner AL

Yeah! I ready have the lmhosts set up... I put an entry in there to
browse and I can browse my home's workgroup perfectly with the
firewall off on both sides. The PROBLEMS come when I turn the
firewall(windows firewall) on the Client machine. And I need to keep
the client and server side windows firewall on.

I want to use the built in winxp server and client but might have to
resort to another program.

Thanks for your reply.