Re: What ports to open on firewall to allow windows update
From: E.T. Renfro (erenfro_at_earthlink.net)
Date: 08/10/04
- Next message: Ronny: "RE: What do I do with v5track.bin?"
- Previous message: w4mlc: "RE: windows update"
- In reply to: Chris Davies: "What ports to open on firewall to allow windows update"
- Next in thread: w4mlc: "Re: What ports to open on firewall to allow windows update"
- Reply: w4mlc: "Re: What ports to open on firewall to allow windows update"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 10 Aug 2004 09:40:57 -0700
I am using
- Windows XP Home SP1 (currently downloading SP2 via dial-up... 10 hours to
go...)
- Kerio v2.15 Personal Firewall
- Windows Update v5
I have only had v5 installed for a few days, so I have been building my
firewall rules based upon firewall activity. I have it set to prompt me for
outgoing when no rule applies. At this point, I am still adjusting
(expanding) the Remote address ranges on an almost daily basis. Perhaps
Microsoft uses different servers based upon locale, or connection type
(broadband vs. dial-up), or whatever. If so then, the remote address ranges
used by your computer might be different than those used by my computer. If
possible, set your firewall to prompt when outgoing rules do not apply, that
way you can see what is needed and create a rule for it.
My Firewall rules, based upon usage so far, are as follows:
Rule 1.
Rule name: v5 Windows Update - Generic Host Process for Win32 Services
Protocol: TCP
Direction: Out
Local Ports (range): 1024-5000
Application: c:\windows\system32\svchost.exe
Remote address (range): 207.46.134.92-207.46.253.221 <== adjust based upon
usage
Remote ports (list): 80,443
Action: Permit
Rule 2.
Rule name: v5 Windows Update - Generic Host Process for Win32 Services
Protocol: TCP
Direction: Out
Local Ports (range): 1024-5000
Application: c:\windows\system32\svchost.exe
Remote address (range): 64.4.21.124-64.4.23.61 <== adjust based upon usage
Remote ports (list): 80,443
Action: Permit
Hope this helps,
Lilla
"Chris Davies" <cjpd@btclick.com> wrote in message
news:9484bfe4.0408100712.1d138692@posting.google.com...
> Hi All
> I know there have been a lot of posts on this but they have not solved
> my problem.
> I have a windows xp home based system. If I connect to the internet
> using a USB adsl modem the update process works just fine. However, I
> usually connect to the internet using an adsl router behind connected
> to my network through a hardware firewall. If I connect this way then
> the update process hangs at 0% and ie freezes.
> So I have concluded that I need to open some ports on the firewall. I
> have tried some suggested in the google groups, but to no avail. Can
> anyone tell me exactly what I need to do?
>
> Many thanks
> Chris
> p.s. till now I have just overcome the problem by plugging in the usb
> modem - but I now have two other machines on my home lan and teh usb
> modem is not an option for them. So I now have to sort out this issue!
- Next message: Ronny: "RE: What do I do with v5track.bin?"
- Previous message: w4mlc: "RE: windows update"
- In reply to: Chris Davies: "What ports to open on firewall to allow windows update"
- Next in thread: w4mlc: "Re: What ports to open on firewall to allow windows update"
- Reply: w4mlc: "Re: What ports to open on firewall to allow windows update"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
