• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1454
  • Last Modified:

How to open ports on Win2k Server

I have a routing setup with Windows 2000 Advanced Server.  On the computers behind this router, (using the router as their gateway) all ports are closed so I can't get incoming connections.  Should I use VPN or make a new connection in My Network Places, or should I enable Demand Dialing in Routing and Remote Access?

I know how to open ports with Internet Connection Sharing but can't find a way to do this with the built in Network Manager.
0
happispider
Asked:
happispider
  • 3
  • 3
1 Solution
 
happispiderAuthor Commented:
I tried something and it failed...  I enabled Internet Connection Sharing and managed to open ports (NOT the way I want to do it), then I ran COMMAND /C NETSH DUMP >>C:\DUMP to dump the configuration.  I dumped the configuration with ICS turned off.  The only difference (I did file compare on the 2 files) was in the great big Base64 "blob".  I decoded the base64 and it still looked pretty awful.  I removed binary characters from it and it still made no sense whatsoever.        
:  () ->help!
0
 
matalyn1016Commented:
You will want to use IPSec to lock down (filter) specific ports.
Here is a helpful link - http://support.microsoft.com/default.aspx?scid=kb;en-us;813878
0
 
matalyn1016Commented:
To add or block a specific port is about half way down the page.
0
Cloud Class® Course: Microsoft Windows 7 Basic

This introductory course to Windows 7 environment will teach you about working with the Windows operating system. You will learn about basic functions including start menu; the desktop; managing files, folders, and libraries.

 
happispiderAuthor Commented:
I could kindof understand the article but I need to reread it.  Can u tell me though how to allow access on ports?  Do I just replace BLOCK with ALLOW?  I opened IPSec in MMC console and fooled with it a bit nothing seemed to work.

I also tried deleting HKEY_LOCAL_MACHINE/System/Policies/IPSec or something like that with no luck (I didn't expect luck there)...  I have a connection to Internet on 192.168.1.107 and a connection to LAN (192.168.2.108) on the multihomed computer...  Could you give me an example command for IPsecpol or directions thru an MMC console because [for now] I'm a bit confused.

The article said to use IPSecpol so I probably need to learn more about it, but if there's another way besides ICS, like working thru MMC or regedit that'd be great.

I guess I'll try to be a bit more specific on exactly what I've tried lateron... thanks for help
0
 
happispiderAuthor Commented:
Looks like I simply had to use NAT routing's 'special ports' feature.  I'm almost happy with this router setup, but it'd be great if I could open more ports than just the ones I specify.  Is that related to IPSec?  I thought IPSec just blocked access.  Can IPSec also allow access to a port (without help from NAT)??
0
 
matalyn1016Commented:
You'll find the router is limited and that using IPSec will truley be a joy to use when you better understand it.

To answer your question >> Can IPSec also allow access to a port (without help from NAT)?? << YES!!
You will be able to eliminate NAT all together in most circumstances.

As for the question >> Do I just replace BLOCK with ALLOW? << YES!! again, take some time to better understand how IPSec works and you'll be fine.

Good Luck...
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: Microsoft Azure 2017

Azure has a changed a lot since it was originally introduce by adding new services and features. Do you know everything you need to about Azure? This course will teach you about the Azure App Service, monitoring and application insights, DevOps, and Team Services.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now