Use router to selectively block file sharing on one of my computers?

  • Thread starter Thread starter Guest
  • Start date Start date
G

Guest

Machine 1: XP-Home, SP2
Machine 2: 98SE
Machine 3: 98SE
DSL Modem: Netopia Cayman 3341 (CenturyTel)
Router: Looking for recommendations

Situation: Recently went from dial-up on Machine 1 (which
provided ICS to Machine 2) to DSL on Machine 1.

Desired configuration:
DSL modem => Router w/Ethernet switch => Machines 1-3.
(Machines 1 & 2 will be wired via Ethernet; Machine 3 will be
wireless. So, I'm considering something like the Microsoft MN-700
for the router.) Machines 1-3 all need Internet access. Machines
1 & 2 need to have complete, unfettered file and printer sharing
with each other (entire hard drives fully shared). Machine 3
*must* be blocked from accessing the shared files and printers on
Machines 1 & 2.

How can this be accomplished? Can the router be configured to
selectively block one machine's access to another machine's
shared devices? Can some software firewall (ZoneAlarm, etc.) do
this?

Many, many thanks for any help you can provide this neophyte!

P.S. - If this is not an appropriate newsgroup for this query,
please point me to a better one.
 
Machine 1: XP-Home, SP2
Machine 2: 98SE
Machine 3: 98SE
DSL Modem: Netopia Cayman 3341 (CenturyTel)
Router: Looking for recommendations

Situation: Recently went from dial-up on Machine 1 (which
provided ICS to Machine 2) to DSL on Machine 1.

Desired configuration:
DSL modem => Router w/Ethernet switch => Machines 1-3.
(Machines 1 & 2 will be wired via Ethernet; Machine 3 will be
wireless. So, I'm considering something like the Microsoft MN-700
for the router.) Machines 1-3 all need Internet access. Machines
1 & 2 need to have complete, unfettered file and printer sharing
with each other (entire hard drives fully shared). Machine 3
*must* be blocked from accessing the shared files and printers on
Machines 1 & 2.

How can this be accomplished? Can the router be configured to
selectively block one machine's access to another machine's
shared devices? Can some software firewall (ZoneAlarm, etc.) do
this?

Many, many thanks for any help you can provide this neophyte!

P.S. - If this is not an appropriate newsgroup for this query,
please point me to a better one.
Click to expand...

A NAT router, like the MN-700, blocks traffic between the internet (WAN) and the
computers (LAN). Between the computers, its just a switch. No blocking there.

A personal firewall, OTOH, like Zone Alarm can indeed be used to block access to
file sharing. Use static ip addresses on your computers, and you can indeed
specify file sharing with specific ip addresses only.

If you're going to use a wireless LAN, you should indeed use fixed ip addresses,
and configure computers 1 and 2 to share ONLY with each other. Protect them
from your wireless neighbors too.

--
Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
My email is AT DOT
actual address pchuck sonic net
 
Hi
Since Routers are very inexpensive to day (some are $10-$20 on sale/rebate)
buy two Routers.
Connect one Router to the DSL Modem and connect computer 3 to it. Connect
the second Router’s WAN port to a regular port on the first Router and put
computer 1 and 2 on it.
Configure the segments as two independent Networks. All computers will be
able to access the Internet, but computer 3 will not access computers 1-2
since the Router NAT will block it. 1-2 would be able to access 3.
Jack (MVP-Networking).
 
Machine 1: XP-Home, SP2
Machine 2: 98SE
Machine 3: 98SE
DSL Modem: Netopia Cayman 3341 (CenturyTel)
Router: Looking for recommendations

Situation: Recently went from dial-up on Machine 1 (which
provided ICS to Machine 2) to DSL on Machine 1.

Desired configuration:
DSL modem => Router w/Ethernet switch => Machines 1-3.
(Machines 1 & 2 will be wired via Ethernet; Machine 3 will be
wireless. So, I'm considering something like the Microsoft MN-700
for the router.) Machines 1-3 all need Internet access. Machines
1 & 2 need to have complete, unfettered file and printer sharing
with each other (entire hard drives fully shared). Machine 3
*must* be blocked from accessing the shared files and printers on
Machines 1 & 2.

How can this be accomplished? Can the router be configured to
selectively block one machine's access to another machine's
shared devices? Can some software firewall (ZoneAlarm, etc.) do
this?

Many, many thanks for any help you can provide this neophyte!

P.S. - If this is not an appropriate newsgroup for this query,
please point me to a better one.
Click to expand...

Here's a possibility:

1. Assign a static IP address to Machine 3 that's in the same subnet
as the router's LAN interface, but outside the scope of the router's
DHCP server. For example, if the DHCP server assigns
192.168.1.2-192.168.1.50, assign 192.168.1.100 to Machine 3.

2. To allow Internet access on Machine 3, manually set its DNS server
address to the router's LAN IP address or your ISP's DNS address.

3. Configure ZoneAlarm on Machine 1 and 2 so that only the DHCP
server's pool of addresses is in the Trusted zone.

I also like Jack's suggestion of using two routers.
--
Best Wishes,
Steve Winograd, MS-MVP (Windows Networking)

Please post any reply as a follow-up message in the news group
for everyone to see. I'm sorry, but I don't answer questions
addressed directly to me in E-mail or news groups.

Microsoft Most Valuable Professional Program
http://mvp.support.microsoft.com
 
Hi Chuck,

What's OTOH?

Newtechie

Chuck said:
A NAT router, like the MN-700, blocks traffic between the internet (WAN)
and the
computers (LAN). Between the computers, its just a switch. No blocking
there.

A personal firewall, OTOH, like Zone Alarm can indeed be used to block
access to
file sharing. Use static ip addresses on your computers, and you can
indeed
specify file sharing with specific ip addresses only.

If you're going to use a wireless LAN, you should indeed use fixed ip
addresses,
and configure computers 1 and 2 to share ONLY with each other. Protect
them
from your wireless neighbors too.

--
Cheers,
Chuck
Paranoia comes from experience - and is not necessarily a bad thing.
My email is AT DOT
actual address pchuck sonic net
Click to expand...
 
On Thu, 17 Feb 05 00:25:00 GMT,
1 & 2 need to have complete, unfettered file and printer sharing
with each other (entire hard drives fully shared). Machine 3
*must* be blocked from accessing the shared files and printers on
Machines 1 & 2.
Click to expand...

Assign Workgroup1 to machines 1&2 and Workgroup2 to machine 3.
MCSE (must consult someone else)
Butterfield
 
Butterfield said:
Assign Workgroup1 to machines 1&2 and Workgroup2 to machine 3.
MCSE (must consult someone else)
Butterfield
Click to expand...

That won't stop Machine 3 from accessing Machines 1&2. Workgroups
don't provide any type of security or access control. A Windows
network can have any number of workgroups, and a computer in any
workgroup can access a computer in any other workgroup.
--
Best Wishes,
Steve Winograd, MS-MVP (Windows Networking)

Please post any reply as a follow-up message in the news group
for everyone to see. I'm sorry, but I don't answer questions
addressed directly to me in E-mail or news groups.

Microsoft Most Valuable Professional Program
http://mvp.support.microsoft.com
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Lost access to part of network 3
Home Network - Router behind Router? Can I make Router act as a switch? 4
File and printer sharing 2
XPpro Networking question 1
Cannot Access Computers on Home Network 5
Accessing Shared folders on a home network 1
Noobie trying to setup file and printer sharing between 2 PCs 1
File Sharing in Home Network... 5

Back
Top