Re: Moving to Win2k Server - but how to make it a DC?
From: Tim (timakal_at_hotmail.com)
Date: 03/28/04
- Next message: Russell Thomas: "RAS Error"
- Previous message: Doug Sherman [MVP]: "Re: Moving to Win2k Server - but how to make it a DC?"
- In reply to: Doug Sherman [MVP]: "Re: Moving to Win2k Server - but how to make it a DC?"
- Messages sorted by: [ date ] [ thread ]
Date: Sun, 28 Mar 2004 16:10:38 -0600
Thanks for the link, I'm glad to know all those.
The problem I have with TCP/IP, at least as far as I could see is this:
My ISP must somehow block LAN traffic. When I rebuild a system (wipe clean the HD and reinstall the
OS), and before I ever get a firewall installed or setup on it, I start out with just TCP/IP (I
later add IPX/SPX). I can't see any other PC. I can, however, type in \\xxx.xxx.xxx.xxx IP and get
it that way. BUT, since we have dynamic IP addresses, it changes from time to time. BUT, doing it
this way is essentially doing the filesharing "over the internet", and must go by my ISP's bandwidth
restrictions (30KByte upstream and 384KByte downstream). Not the best thing for a 100Mbps
network... so I usually set the "advanced options" for the networking, and disable Printer & File
Sharing over TCP/IP and set it only to IPX/SPX. It always solved my problem. So, I've been doing
File Sharing over IPX/SPX, leaving the TCP/IP strictly for internet usage.
Ok, if I desicde to do my Win2k Server as my router, what firewall software is available for me to
use? I have Norton Personal Firewall setup on the other PC's, but when I go to install it on my
server, it always says it is not supported on an operating system as a service. So, I usually do
not install it. As it is right now, that server just has TCP Filtering setup to only allow Ports 21,
80, 110, and 25. On the page you sent the link to... could I setup the TCP filtering to allow those
ports as well? would that suffice?
Thanks
Tim
"Doug Sherman [MVP]" <dsherman@nospam.tampabay.rr.com> wrote in message
news:eJ3vpgOFEHA.2272@TK2MSFTNGP09.phx.gbl...
> One of the advantages of switching to a hardware router or a multihomed
> Win2k software router is you only need one firewall to protect the entire
> internal network. Most hardware routers have a built-in firewall
> capability. If instead you use Win2k Server as your router, only the server
> needs firewall protection.
>
> Your present individual firewalls are probably blocking NetBIOS over TCP/IP,
> and that is why you could not share files with this protocol. If you
> continue to use individual firewalls, configuring an Active Directory domain
> could be a nightmare. Here are some of the ports you might need to open:
>
> http://support.microsoft.com/default.aspx?scid=kb;en-us;289241
>
> Doug Sherman
> MCSE Win2k/NT4.0, MCSA, MCP+I, MVP
- Next message: Russell Thomas: "RAS Error"
- Previous message: Doug Sherman [MVP]: "Re: Moving to Win2k Server - but how to make it a DC?"
- In reply to: Doug Sherman [MVP]: "Re: Moving to Win2k Server - but how to make it a DC?"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
