Re: External PCAnywhere to internal client

Bitsmasher,

What you are describing is basic network address translation (NAT) and should really have nothing at all to do with the server IF the server is not providing the network's firewall/proxy functionality.

Assuming that you have a typical hardware firewall, then you should be able to configure port forwarding on it directly to the LAN address of the workstation to be controlled.

Make sure that you specify the two pcA ports correctly on the firewall, and that these ports are also open on the workstation's software firewall if it has one:
5631 = TCP
5632 = UDP

Yours,
Brad Dinerman


______________________________________
Bradley J. Dinerman, MVP - Windows Server Systems
President, New England Information Security Group
http://www.neisg.org

Bitsmasher wrote: 
I have a client computer on my SBS 2003 standard network that gets remote
maintenance from the vendor of the accounting application. This was always
done with PCAnywhere when we were using SBS 4.5 and it worked fine. I use a
hardware firewall that lets the correct PCAnywhere ports in from the vendor'
s ip address and routed them to the internal PC using the firewall (ie:
ports 5631& 5632 to 10.0.0.103 via 192.168.0.2)



With SBS2003 this does not seem to work. I have the SBS firewall disabled. I
did try enabling it and allowing those ports, but still no luck. I know the
hardware firewall is getting the requests and is forwarding as I see it in
the log file. I would prefer having the vendor going directly to the client
PC and not a remote console to the server then Remote Desktop to the client.
Any suggestions for this?



TIA!


.

Relevant Pages

  • Re: Interesting webserver intrusion (apache 1.3.31, mod_ssl 2.8.18, php 4.3.7)
    ... > fairly tight(only allowing 4 ports in), but perhaps I could tighten it ... The host systems firewall rules govern the access to the jailed system. ... What connections does your server need to ... Perhaps there is a 0-day for your ftp server out there. ...
    (Incidents)
  • Re: Add 2nd NIC after intial install?
    ... My biggest question with 1 NIC is: even if workstations are protected with individual firewall products, what is protecting the SBS server itself if ports are open for remote access through the Linksys firewall? ...
    (microsoft.public.windows.server.sbs)
  • Re: Using Office Outlook with exchange server behind windows firewall
    ... On our network I have windows firewall turned on, on both my small business server and my windows xp workstations. ... Based on an article I read about all the ports that exhange may use I also tried making exceptions for ports ...
    (microsoft.public.windows.server.sbs)
  • Re: Source Code to Filter out WindowsMessenger POP-UPS
    ... Zone Alarm does NOT support 'server'. ... Very few ports are open, ... >What you are asking for amounts to a firewall. ... I would NOT search for source code to compile ...
    (microsoft.public.inetserver.iis.security)
  • Re: NETFW.INF, Preconfigured Firewall settings and dialogs
    ... it is Windows Server 2003 SP1 firewall that i'm using. ... Using the document '832017 Port Requirements for the Microsoft Windows ... > to achieve the following goal: some ports are open by default and others ...
    (microsoft.public.windows.server.networking)