Seperate remote desktop from network

Hello, i have installed a remote desktop software and want to make this computer available for someone i work with. But don't want to get access to other computers which are connected. When i get login to this computer i could see and use all files from My Network Places. Can i do seperate this computer from network? (All computers are connected with hub.)
tilmesAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

catastrophic_failureCommented:
You can prevent the other computers that are connected to the hub from sharing their files.  

What all operating systems are connected to the hub
0
jacobhooverCommented:
Why give this person remote access to your network in the first place if you don't want them to have access to your network?

If you just want to supply and support a machine with software on it for them to remotely use, if you have a Domain, just leave the machine disconnected from the domain.  If this machine dosen't need to paryticipate in the local network, you could simply remove the Windows Filesharing components for the network protocols, however if this remote user has admin access to the machine, he could simply install them to regain access.  If you don't have a domain and you wish all the other machines on the network to allow file sharing, the next best option would be to put a personal firewall on all of the other machines.  

Do you have a domain?
What OS's are installed on your LAN?
0
tilmesAuthor Commented:
I don't have a lan and system are used in all computeres are windows XP. Your are right that he can install Windows Filesharing components for the network protocols again after removing. Any options i can use?
0
Ultimate Tool Kit for Technology Solution Provider

Broken down into practical pointers and step-by-step instructions, the IT Service Excellence Tool Kit delivers expert advice for technology solution providers. Get your free copy now.

jacobhooverCommented:
LAN = Local Area Network, and if they are all connected VIA a hub, and they share files, they are on a LAN.

You will need either a supplimental firewall on each of the PC's you don't want him to be able to access or use multiple network segments to hide the remainder of your network.  The firewall option would require you to buy/install a firewall on each PC, the network segment option would be as simple as purchasing a simple NAT device (like a broadband router) which will have a built in firewall.  Then you can block the single IP or Mac from the rest of the network while the rest of the machines are free to openly communicate.
0
jacobhooverCommented:
More info on the hardware option.

[INTERNET] --- [ROUTER-A (you called it a hub)] ----- [ROUTER-B] ---- [ALL SHARED COMPUTERS]
                                     |
                                     |
                                     ---- [COMPUTER THAT THE "Other Guy" will use]
0
tilmesAuthor Commented:
I have one router and hub is connected to it. You mean i can use configuration in router to set up a firewall?
0
tilmesAuthor Commented:
Can i block single Ip from the rest of network wih this router?
http://support.dlink.com/products/view.asp?productid=DI%2D604
0
jacobhooverCommented:
Yes, see

http://support.dlink.com/faq/view.asp?prod_id=2089&question=VDI-604%20/%20VDI-624

You can then set a firewall rule that blocks communication from the one "black sheep" computer to talking to the remainder of the subnet.

Assuming your black sheep computer is 192.168.0.100, and all the rest are 192.168.0.101,192.168.0.102,192.168.0.103,...,192.168.0.10x

Set the action to DENY, then set the source IP range to be from 192.168.0.100 to 192.168.0.100, and the destination IP from 192.168.0.101 to 192.168.0.10x

The only issue here willt hen be, you need to connect the "black sheep" to the router, instead of directly to the hub.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
tilmesAuthor Commented:
I mad setting as above, but hasn't got the result as it should be.
0
tilmesAuthor Commented:
It works now opssosit way as i intended, From black sheep computer can browser sharing files but from my cmputer i cannot browser thire files/folders.
0
jacobhooverCommented:
I assume that because you accepted it you got it working.  If not, let me know and I'll try and help diagnose the config issue.
0
tilmesAuthor Commented:
It is still not working.
0
jacobhooverCommented:
Make sure the interface source and destination is set to LAn and the protocol is set to both.

If this still dosen't make it work, you may need to modify the default rule that allows Source: LAN.* Dest: *.*  To LAN.*:WAN.* and add LAN.192.168.0.101 to 192.168.0.10x: LAN.*.  Be aware that if you somehow break the configuration, there is a reset button on the router to restore the factory default settings.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Microsoft Server OS

From novice to tech pro — start learning today.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.