Solved

How to open ports on Win2k Server

Posted on 2004-04-29
6
1,427 Views
Last Modified: 2007-12-19
I have a routing setup with Windows 2000 Advanced Server.  On the computers behind this router, (using the router as their gateway) all ports are closed so I can't get incoming connections.  Should I use VPN or make a new connection in My Network Places, or should I enable Demand Dialing in Routing and Remote Access?

I know how to open ports with Internet Connection Sharing but can't find a way to do this with the built in Network Manager.
0
Comment
Question by:happispider
  • 3
  • 3
6 Comments
 
LVL 2

Author Comment

by:happispider
ID: 10955312
I tried something and it failed...  I enabled Internet Connection Sharing and managed to open ports (NOT the way I want to do it), then I ran COMMAND /C NETSH DUMP >>C:\DUMP to dump the configuration.  I dumped the configuration with ICS turned off.  The only difference (I did file compare on the 2 files) was in the great big Base64 "blob".  I decoded the base64 and it still looked pretty awful.  I removed binary characters from it and it still made no sense whatsoever.        
:  () ->help!
0
 
LVL 4

Expert Comment

by:matalyn1016
ID: 10955558
You will want to use IPSec to lock down (filter) specific ports.
Here is a helpful link - http://support.microsoft.com/default.aspx?scid=kb;en-us;813878
0
 
LVL 4

Expert Comment

by:matalyn1016
ID: 10955562
To add or block a specific port is about half way down the page.
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 2

Author Comment

by:happispider
ID: 10956309
I could kindof understand the article but I need to reread it.  Can u tell me though how to allow access on ports?  Do I just replace BLOCK with ALLOW?  I opened IPSec in MMC console and fooled with it a bit nothing seemed to work.

I also tried deleting HKEY_LOCAL_MACHINE/System/Policies/IPSec or something like that with no luck (I didn't expect luck there)...  I have a connection to Internet on 192.168.1.107 and a connection to LAN (192.168.2.108) on the multihomed computer...  Could you give me an example command for IPsecpol or directions thru an MMC console because [for now] I'm a bit confused.

The article said to use IPSecpol so I probably need to learn more about it, but if there's another way besides ICS, like working thru MMC or regedit that'd be great.

I guess I'll try to be a bit more specific on exactly what I've tried lateron... thanks for help
0
 
LVL 2

Author Comment

by:happispider
ID: 10958145
Looks like I simply had to use NAT routing's 'special ports' feature.  I'm almost happy with this router setup, but it'd be great if I could open more ports than just the ones I specify.  Is that related to IPSec?  I thought IPSec just blocked access.  Can IPSec also allow access to a port (without help from NAT)??
0
 
LVL 4

Accepted Solution

by:
matalyn1016 earned 300 total points
ID: 10962660
You'll find the router is limited and that using IPSec will truley be a joy to use when you better understand it.

To answer your question >> Can IPSec also allow access to a port (without help from NAT)?? << YES!!
You will be able to eliminate NAT all together in most circumstances.

As for the question >> Do I just replace BLOCK with ALLOW? << YES!! again, take some time to better understand how IPSec works and you'll be fine.

Good Luck...
0

Featured Post

Easy, flexible multimedia distribution & control

Coming soon!  Ideal for large-scale A/V applications, ATEN's VM3200 Modular Matrix Switch is an all-in-one solution that simplifies video wall integration. Easily customize display layouts to see what you want, how you want it in 4k.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Internet Speed Test 5 132
Windows 7 home sp1 updates 9 100
EXCHANGE: Extended schema in child domain 7 69
SCCM firewall status and security group members 4 56
Greetings, Experts! First let me state that this website is top notch. I thoroughly enjoy the community that is shared here; those seeking help and those willing to sacrifice their time to help. It is fantastic. I am writing this article at th…
Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
Two types of users will appreciate AOMEI Backupper Pro: 1 - Those with PCIe drives (and haven't found cloning software that works on them). 2 - Those who want a fast clone of their boot drive (no re-boots needed) and it can clone your drive wh…

789 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question