Re: SBS 2003 Firewall, joining domain, logons

Hopefully it's not so on the server, which can only have 'domain settings'
because it is never not connected to the domain :-) or maybe that's what the
problem is, if SBS detected itself as not being a domain member and applied
'off domain' firewall settings to itself... just what would happen?

"Les Connor [SBS MVP]" <les.connor@xxxxxxxxxxxx> wrote in message
news:B909EC6F-E063-4CCC-9B8F-8BAB2AF25525@xxxxxxxxxxxxxxxx
Where is this 'main window' of the firewall located? On the server?
Windows firewall doesn't run on the SBS - if it's running then we'd have
to back up and have a look at your installation method.

--
Les Connor [SBS MVP]


"JP" <JP@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:95F881B4-A9DE-4ADA-997D-96396049B5E6@xxxxxxxxxxxxxxxx
server event log is ok, just informational messages.
The main windows of the firewall has a message 'windows firewall is using
your non-domain settings'.


** server ipconfig /all **
Microsoft Windows [Version 5.2.3790]
(C) Copyright 1985-2003 Microsoft Corp.

C:\Documents and Settings\Administrator>ipconfig /all

Windows IP Configuration

Host Name . . . . . . . . . . . . : server-1
Primary Dns Suffix . . . . . . . : HMI-Network.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : HMI-Network.local

Ethernet adapter Server Local Area Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : HP NC373i Multifunction Gigabit
Server Ad
apter
Physical Address. . . . . . . . . : 00-1C-C4-43-A2-08
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.31
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.12
DNS Servers . . . . . . . . . . . : 192.168.0.31
Primary WINS Server . . . . . . . : 192.168.0.31

C:\Documents and Settings\Administrator>

** one of the XP SP2 workstations **
Microsoft Windows 2000 [Version 5.00.2195]
(C) Copyright 1985-2000 Microsoft Corp.

C:\Documents and Settings\ldavis.HMI-NETWORK>IPCONFIG /ALL

Windows 2000 IP Configuration

Host Name . . . . . . . . . . . . : ldavis
Primary DNS Suffix . . . . . . . : HMI-Network.local
Node Type . . . . . . . . . . . . : Hybrid
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No
DNS Suffix Search List. . . . . . : HMI-Network.local

Ethernet adapter Local Area Connection 2:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : NETGEAR FA311/312 PCI Adapter
Physical Address. . . . . . . . . : 00-02-E3-02-08-E6
DHCP Enabled. . . . . . . . . . . : No
IP Address. . . . . . . . . . . . : 192.168.0.37
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Default Gateway . . . . . . . . . : 192.168.0.12
DNS Servers . . . . . . . . . . . : 192.168.0.31
Primary WINS Server . . . . . . . : 192.168.0.31

C:\Documents and Settings\ldavis.HMI-NETWORK>

"Cris Hanna [SBS-MVP]" wrote:

In addition to Les' suggestions and thoughts
How are you going about joining these computers

are you using IE and the connectcomputer wizard??

--
Cris Hanna [SBS - MVP]
-----------------------------------------------------------
MVPs Do Not Work for Microsoft
Please do not contact me directly regarding issues
"Les Connor [SBS MVP]" <les.connor@xxxxxxxxxxxx> wrote in message
news:57E63BB1-28B0-4CAD-9E46-8A202937B5B6@xxxxxxxxxxxxxxxx
The firewall is configured by group policy, and it works just fine. If
you're having issues with the firewall, something is abnormal.

What operating system is on the workstations?
If they're Vista - have you installed the Vista/office 2007
compatability
updates?
What are you seeing in the way of errors in the event logs of both the
server, and workstations?
Is Windows Server 2003 SP2 Installed?
Have you run the SBS Best Practices Analyser?

Please post the output of IPCONFIG /ALL run from a command prompt on
the
server, and a workstation.

--
Les Connor [SBS MVP]


"JP" <JP@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote in message
news:7B5C2337-4AC2-43DE-890E-B3FE10975E52@xxxxxxxxxxxxxxxx
>I have setup a SBS 2003 R2 server and during initial testing found
that the
> Windows firewall prevented or drastically inhibited the workstations
from
> joining the domain and logging on. I currently have disabled the
firewall
> and do not have the problem. (there is a hardware firewall on
Internet)
>
> What do I need to tweek to enable the firewall and not have the
issues?
> Why would MS make it like this?




.

Relevant Pages

  • Re: How to Maintain an IIS Server?
    ... > server running on a Windows 2000 server. ... before a firewall and antivirus have been installed]. ... open ports; however, this will not identify which program is using the port. ...
    (microsoft.public.inetserver.iis.security)
  • Re: login attempts
    ... > Every day i have on my win2000 iternet server a lots of wrong login ... Windows by default allows ... You also need a firewall. ... the internet, except for those ports you know you're using. ...
    (microsoft.public.win2000.security)
  • Re: How to Maintain an IIS Server?
    ... >> server running on a Windows 2000 server. ... > before a firewall and antivirus have been installed]. ... > program or executable using that port. ...
    (microsoft.public.inetserver.iis.security)
  • Re: Cannot connect to the Internet
    ... My Windows 2000 pro PC is connected to the internet (Local Area ... Connection 2 Status icon shows "Connected" with a speed of 10.0 ... The master browser has received a server announcement from ... The DNS Client service could not contact any DNS servers ...
    (microsoft.public.mac.virtualpc)
  • Re: Serious Security Issue in Windows XP SP2s Firewall
    ... Subject: AW: Serious Security Issue in Windows XP SP2's Firewall ... If you update a WinXP SP-1 with enabled Internet ... Connection Firewall ...
    (Focus-Microsoft)
Loading