Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1450
  • Last Modified:

How to open ports on Win2k Server

I have a routing setup with Windows 2000 Advanced Server.  On the computers behind this router, (using the router as their gateway) all ports are closed so I can't get incoming connections.  Should I use VPN or make a new connection in My Network Places, or should I enable Demand Dialing in Routing and Remote Access?

I know how to open ports with Internet Connection Sharing but can't find a way to do this with the built in Network Manager.
0
happispider
Asked:
happispider
  • 3
  • 3
1 Solution
 
happispiderAuthor Commented:
I tried something and it failed...  I enabled Internet Connection Sharing and managed to open ports (NOT the way I want to do it), then I ran COMMAND /C NETSH DUMP >>C:\DUMP to dump the configuration.  I dumped the configuration with ICS turned off.  The only difference (I did file compare on the 2 files) was in the great big Base64 "blob".  I decoded the base64 and it still looked pretty awful.  I removed binary characters from it and it still made no sense whatsoever.        
:  () ->help!
0
 
matalyn1016Commented:
You will want to use IPSec to lock down (filter) specific ports.
Here is a helpful link - http://support.microsoft.com/default.aspx?scid=kb;en-us;813878
0
 
matalyn1016Commented:
To add or block a specific port is about half way down the page.
0
Visualize your virtual and backup environments

Create well-organized and polished visualizations of your virtual and backup environments when planning VMware vSphere, Microsoft Hyper-V or Veeam deployments. It helps you to gain better visibility and valuable business insights.

 
happispiderAuthor Commented:
I could kindof understand the article but I need to reread it.  Can u tell me though how to allow access on ports?  Do I just replace BLOCK with ALLOW?  I opened IPSec in MMC console and fooled with it a bit nothing seemed to work.

I also tried deleting HKEY_LOCAL_MACHINE/System/Policies/IPSec or something like that with no luck (I didn't expect luck there)...  I have a connection to Internet on 192.168.1.107 and a connection to LAN (192.168.2.108) on the multihomed computer...  Could you give me an example command for IPsecpol or directions thru an MMC console because [for now] I'm a bit confused.

The article said to use IPSecpol so I probably need to learn more about it, but if there's another way besides ICS, like working thru MMC or regedit that'd be great.

I guess I'll try to be a bit more specific on exactly what I've tried lateron... thanks for help
0
 
happispiderAuthor Commented:
Looks like I simply had to use NAT routing's 'special ports' feature.  I'm almost happy with this router setup, but it'd be great if I could open more ports than just the ones I specify.  Is that related to IPSec?  I thought IPSec just blocked access.  Can IPSec also allow access to a port (without help from NAT)??
0
 
matalyn1016Commented:
You'll find the router is limited and that using IPSec will truley be a joy to use when you better understand it.

To answer your question >> Can IPSec also allow access to a port (without help from NAT)?? << YES!!
You will be able to eliminate NAT all together in most circumstances.

As for the question >> Do I just replace BLOCK with ALLOW? << YES!! again, take some time to better understand how IPSec works and you'll be fine.

Good Luck...
0

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now