Re: firewall policy for xp sp2 client...

Tech-Archive recommends: Fix windows errors by optimizing your registry

Run rsop.msc on that domain computer to see what it shows for the firewall
settings and what GPOs are applying those settings as it may not be what you
expect from your description. Also with the configuration that you want the
computer will not disable the Windows Firewall until it is on the network
where it detects a domain controller. If DNS is not configured correctly on
that computer it may not find a domain controller even if it is connected to
the network where they are located. Usually that is taken care of via DHCP
and can be verified with the results shown with ipconfig /all. I would also
check the application log on that computer to see if there are any scecli
and/or userenv error/warnings that could indicate failure to find a domain
controller or apply Group Policy. These events are often shown at
startup/logon.

Steve




"Terry Mulvany" <terry.mulvany@xxxxxxxxxxxxxxxxx> wrote in message
news:%23KYFdJOtGHA.1216@xxxxxxxxxxxxxxxxxxxxxxx
Group,
I have a laptop running xp sp2 that is joined to our one and only domain
and has a windows VPN network connection configured (which works, he gets
an IP from our DHCP).
before shipping to user i logged in locally on to the manged network and
since we had the following group policies:
1. Domain Profile: Protect all network connections : disabled
2. Standard Profile : Protect all network connections: enabled

the firewall settings (as seen from start > run > firewall.cpl) is ON.
because as a remote user he gets on his local 192.168.1.1 private LAN and
VPNs in to our network.
My problem is that I cannot TURN OFF this darn firewall. Even when
changing the Standard Profile group policy, having him reboot and
re-connect to VPN it shows his firewall is ON.

I tried changing the c:\windows\inf\netfw.inf according to MS doc
http://download.microsoft.com/download/6/e/f/6efdbda6-ca9e-4122-9787-3fd7ca7d7f33/WFINF_Guide.doc
but that does nothing (only really tried locally to a computer that has
firewall OFF and i used these instructions to try and turn ON by changing
the domain profile settings but it never worked).

Any ideas would be greatly appreciated.

-Terry




.

Relevant Pages

  • Re: SERVICES - Manual Settings
    ... No. 6 Remote Access Connection Mgr yours set on Automatic. ... If u don't have a Network, what is your reasoning to set this on ... a clue what MY reasoning behind some of these Settings. ... of the Windows Firewall. ...
    (microsoft.public.windowsxp.general)
  • Re: Computers on LAN wont recognize or talk to each other.
    ... In the meantime I've changed the advanced TCP/IP settings on both computers ... I believe I've eliminated 3rd party problems of firewall from zone ... I have tried running the Network Setup wizard on both machines, ...
    (microsoft.public.windowsxp.network_web)
  • Re: XP-Home --Workgroup
    ... Check firewall settings. ... network - useful if attaching a machine with questionable integrity. ... changed but it's very likely installing the OneCare firewall changed things ...
    (microsoft.public.windowsxp.accessibility)
  • Re: Sharing problem on XP Home
    ... identify the problem (if it were misconfigured Norton settings for example) ... if you can get to folders on your network. ... Laptop2 can see Laptop1 and Laptop3 in My Network Places but cannot ... This is most commonly caused by a misconfigured firewall. ...
    (microsoft.public.windowsxp.general)
  • Re: Firewall turns off when connecting to VPN
    ... I need to gather information on all my client/server applications, network ... firewall and fixing things as they break (not that you're recommending that, ... domain profile, it's currently set to disable the firewall. ... domain-specific traffic uses the VPN connection.) ...
    (microsoft.public.windows.group_policy)