How to gain access to my local network with my WinXP firewall on

  • Thread starter Thread starter Astra
  • Start date Start date
A

Astra

Hi All

I want to keep my WinXP's Firewall option on (as it works fine at home), but
when I bring my PC into my office I can't access my 10.0.x.x network because
the firewall blocks it out.

I don't want to keep disabling it each time I come in, so could somebody
tell me how I can get round this.

Thanks

Robbie
 
Hi All

I want to keep my WinXP's Firewall option on (as it works fine at home), but
when I bring my PC into my office I can't access my 10.0.x.x network because
the firewall blocks it out.

I don't want to keep disabling it each time I come in, so could somebody
tell me how I can get round this.

Thanks

Robbie
Click to expand...

By design, XP's Internet Connection Firewall blocks file sharing.
It's intended for use only on a direct modem connection to the
Internet.

You can enable file and printer sharing through the firewall, but that
can leave your computer wide open to Internet hackers. The settings
are all-or-nothing. It isn't possible to let the good guys in while
keeping the bad guys out.

A much better solution is to disable ICF and install a firewall
program that lets you enable access by the good guys (e.g. by
specifying that the 10.0.x.x network is trusted) while blocking the
bad guys.

I strongly recommend NOT doing it, but if you really want to enable
file and printer sharing through the firewall:

1. Go to the connection's Properties | Advanced.

2. Click Settings.

3. Use the Add button open these ports: TCP 139, TCP 445, UDP 137, UDP
138.
--
Best Wishes,
Steve Winograd, MS-MVP (Windows Networking)

Please post any reply as a follow-up message in the news group
for everyone to see. I'm sorry, but I don't answer questions
addressed directly to me in E-mail or news groups.

Microsoft Most Valuable Professional Program
http://mvp.support.microsoft.com
 
Why do you discourage opening those ports; and in any event, what's the significance of TCP 445. Is opening those ports different (effect-wise) from opening TCP and UDP Ports 135 through 139 ?
 
Why do you discourage opening those ports; and in any event, what's the significance of TCP 445. Is opening those ports different (effect-wise) from opening TCP and UDP Ports 135 through 139 ?
Click to expand...

There are hackers using automated tools to scan the Internet 24 hours
a day. Opening those ports on a computer that's connected directly to
the Internet is, in effect, inviting those hackers to break into your
computer. I strongly recommend never doing it.

Windows XP/2000/2003 (but not 95/98/Me) can use TCP 445 (SMB) for file
and printer sharing without NetBIOS. These web pages have details:

http://ntsecurity.nu/papers/port445/
http://www.petri.co.il/what_is_port_445_in_w2kxp.htm

To the best of my knowledge, ports 135 and 136 have nothing to do with
file and printer sharing. I don't know why anyone would want to open
them. For port descriptions, see:

http://support.microsoft.com/?id=289241
http://www.iana.org/assignments/port-numbers
--
Best Wishes,
Steve Winograd, MS-MVP (Windows Networking)

Please post any reply as a follow-up message in the news group
for everyone to see. I'm sorry, but I don't answer questions
addressed directly to me in E-mail or news groups.

Microsoft Most Valuable Professional Program
http://mvp.support.microsoft.com
 
Back
Top