hidden hit counter
Welcome to WindowsForumz.com!
FAQFAQ    SearchSearch      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

help > my lan with ICS and firewall

  
   Windows XP (Home) -> Windows XP Arch -> Help & Support Arch2 RSS
Next:  aspect ratio, 2 monitors different aspecs incorre..  
Author Message




User: inactive
Posts:



(Msg. 1) Posted: Tue Jul 25, 2006 4:43 am
Post subject: help > my lan with ICS and firewall
Hi,

I need some help on my LAN setup here in the office. Basically, I was wondering how I can share my internet connection, with firewall turned ON, and blocking some programs on some PCs accessing my shared internet without blocking my app. Here's my setup:

DSL MODEM -> NETGEAR WIFI ROUTER WGR614v5 -> MY PC

MY PC -> HUB -> PC1 / PC2 / PC3 / PC4

I shared this internet connection to my employees via ICS (I have two LAN cards), but here comes my problems:

1. All PCs don't have internet connection if my firewall is turned ON (outpost firewall v.3.0)

2. When I turn off my firewall, they all get internet, which is fine, but then they also have access to other things like YAHOO MESSENGER, which I want to block off. I think this means I need my firewall turned ON?

3. I want to be able to have control on which PC has internet access, turning my firewall OFF, PC1-PC4 all have internet access.

4. I want to be able to have control on blocking apps on certain PCs, like YAHOO MESSENGER on PC1, but not on my PC and PC 2-4. Can I do this with outpost firewall?

I'm not well versed in firewalls, so I'm not really sure what to do with outpost and how to enable my ICS with it turned on. I also hope to set it up with full control on what internet program can be used and which PC can use it.

I really hope you guys can help me with this. Thanks!

 >> Stay informed about: help > my lan with ICS and firewall 
Back to top
Login to vote




User: inactive
Posts:



(Msg. 2) Posted: Wed Jul 26, 2006 10:36 am
Post subject: Re: help > my lan with ICS and firewall [Login to view extended thread Info.]
I'm not familiar with Outpost - but most firewalls have a setting to allow traffic within the Network Neighborhood. This has been a problem for some folks using both the Windows Firewall and the Sygate free version.

Next, I'd suggest trying the free Microsoft Shared Computer Toolkit for Windows XP (can be downloaded here: http://www.microsoft.com/windowsxp/sharedaccess/default.mspx ). It's got lot's of tools that you can use to increase your system security.

Next, I've had the IM problem with my kids - the solution for me was to just make rules to block those ports (and I also used keywords) in the controls of the router. The wired NetGear router had some of the rules built in - but I had to add some of them also (and customize them in order to shut off the kids individually as needed). I've got v6 of the same router - and it's in the Block Services section. Just click on "Add" to start adding the blocking that you'd like to do (sorry, bual all I blocked was AIM and the rules were mostly there for that).

 >> Stay informed about: help > my lan with ICS and firewall 
Back to top
Login to vote




User: inactive
Posts:



(Msg. 3) Posted: Thu Jul 27, 2006 5:49 am
Post subject: Re: help > my lan with ICS and firewall [Login to view extended thread Info.]
thanks for the reply, however, if I block messenger access through the netgear router, I lose that access as well right? I was hoping to be able to block selectively, based on which pc can access which software, and which can't.

I am thinking this is done through my soft firewall, which in this case, is outpost. But I'm not familiar with which ports to open for ICS, and which rules to set to allow which pc access.

Any other ideas would be greatly appreciated. Thanks!
 >> Stay informed about: help > my lan with ICS and firewall 
Back to top
Login to vote




User: inactive
Posts:



(Msg. 4) Posted: Thu Jul 27, 2006 12:03 pm
Post subject: Re: help > my lan with ICS and firewall [Login to view extended thread Info.]
Down and dirty fix for this that I used is to assign static IP addresses to each computer on the network.

Then you can block individual IP's or groups of IP's in the rules on the router.

Or, if you need dynamic IP's for some reason - then you can deny it to all, and create a rule that allows you to use it.

For example, here's what my IP's are
192.168.0.1 - Main Router
192.168.0.2 - my PC
192.168.0.3 - my FTPServer
192.168.0.4 - wife's PC
192.168.0.8 - oldest boy's PC
192.168.0.9 - youngest boy's PC
192.168.0.50 - wireless laptop
192.168.0.99 - wireless router used as access point

So (for example), what I do to block the boys AOL IM is to create a rule blocking TCP port 5190 for IP 192.168.0.8 with the selection to "Block Always" and another rule to block TCP port 5190 for IP 192.168.0.9 with the selection to "Block Always". Then I enable it and they have no AOL IM access. If it's not enabled - then they have access.

Conversely, I could allow everyone to have dynamic IP addresses - and I could assign myself and the wife static IP's. Then I'd block all AOL IM traffic - and create a rule that allows the static IP's to access those ports.

So, all you've gotta do is to decide how to assign IP's on the LAN and we can work from there.
 >> Stay informed about: help > my lan with ICS and firewall 
Back to top
Login to vote




User: inactive
Posts:



(Msg. 5) Posted: Tue Aug 08, 2006 4:35 am
Post subject: Re: help > my lan with ICS and firewall [Login to view extended thread Info.]
thanks usasma, what I did was just connect everyone to my netgear router, and create my rules on the router itself. However, it was a bit under featured, so when I enable blocking, all rules are blocked. I can't selectively block yahoo only without enabling the other rules. I guess for now that will do, but for the outpost firewall thing, my problem was, when I turn my firewall on, they all lose internet connection...so to share internet to the others, I have to disable my firewall which was not really something I'd want to do.
 >> Stay informed about: help > my lan with ICS and firewall 
Back to top
Login to vote




User: inactive
Posts:



(Msg. 6) Posted: Wed Aug 09, 2006 8:10 am
Post subject: Re: help > my lan with ICS and firewall [Login to view extended thread Info.]
Since I have no knowledge of the Outpost firewall I'm unable to give any advice for it (other than cruising around in it's interface and trying to find something that relates to network connectivity/access).

In the router's home page you can click on the link (on the left) for "Block Services". In order to block Yahoo, you'll have to be sure that you've got the right ports. Here's a list of ports for the UK version that I found on Google (searched for "yahoo IM ports"): http://www.helpbytes.co.uk/yconnect.php

Once in the Block Services page, click on Add, then enter this:

Service Type: User Defined
Protocol: TCP/UDP
Starting Port: the port that you want to block (don't block port 80 or 8080! Those are your regular internet ports)
Ending Port: The same as starting port
Service Type/User Defined: Give it a description that you'll remember

Filter Services For: ensure that All IP Addresses is checked.

Then click on Apply.

Do this for each port and you'll have the blocking in place for only those ports that it's needed for.
 >> Stay informed about: help > my lan with ICS and firewall 
Back to top
Login to vote
Display posts from previous:   
   Windows XP (Home) -> Windows XP Arch -> Help & Support Arch2 All times are: Eastern Time (US & Canada)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Categories:
  Windows XP
 Win 2000/NT/98/ME
 Windows Vista!

[ Contact us | Terms of Service/Privacy Policy ]