Wim
August 19th 05, 04:58 PM
Hope someone can figure this out.
In our W2000 Domain we have some XP Pro Sp2 clients.
I configured the firewall manually and enabled logging of dropped packets.
File and Print sharing is "on" for local subnet only.
Problem : The XP machines are very slow when the firewall is turned on!
I looked in the log and saw some connections being dropped. The IP that was
blocked belonged to my subnet let's say it's 10.0.3.0
To make it more complicated...there's another company at the other side of
the country that belongs to the same domain, but is on another subnet! let's
say 10.0.4.0
I made exceptions for the ports that were blocked and set a custom scope:
10.0.3.0/255.255.255.0,10.0.4.0/255.255.255.0
Still those ports are being blocked!
Can I (simple......because there are more and more xp machines :-() set a
rule so our domain-pc's won't block eachother? An exception for all ports for
subnets?
Some of those machines (notebooks) are takien home for the weekend to work
on them locally (with cached credentials).
They can however connect to their home-lan and connect to internet. They
should be save out there as well!
Any help would be appriciated!
Kind regards,
Wim
In our W2000 Domain we have some XP Pro Sp2 clients.
I configured the firewall manually and enabled logging of dropped packets.
File and Print sharing is "on" for local subnet only.
Problem : The XP machines are very slow when the firewall is turned on!
I looked in the log and saw some connections being dropped. The IP that was
blocked belonged to my subnet let's say it's 10.0.3.0
To make it more complicated...there's another company at the other side of
the country that belongs to the same domain, but is on another subnet! let's
say 10.0.4.0
I made exceptions for the ports that were blocked and set a custom scope:
10.0.3.0/255.255.255.0,10.0.4.0/255.255.255.0
Still those ports are being blocked!
Can I (simple......because there are more and more xp machines :-() set a
rule so our domain-pc's won't block eachother? An exception for all ports for
subnets?
Some of those machines (notebooks) are takien home for the weekend to work
on them locally (with cached credentials).
They can however connect to their home-lan and connect to internet. They
should be save out there as well!
Any help would be appriciated!
Kind regards,
Wim