Solved

Setup NAT routing on Windows XP Pro box.

Posted on 2006-07-15
4
865 Views
Last Modified: 2012-08-13
Hi.  I am trying to create an internet billing device using windows XP Pro.  The box has one LAN nic and one WAN nic.  What I need to do to achieve what I want is:

1) Setup NAT routing on winXP box, to allow clients on the LAN nic to access the internet on the WAN nic.
2) Utilise a firewall that can be 'controlled' via a VB COM application.

When an incoming connection is received on the LAN nic, I want to be able to query a SQL database and find out if that IP address has been enabled for access (which will be done via a web login page prior). IF it is enabled, then create a firewall rule to allow access.  

When the session finishes, then the app will remove the firewall rule.

Firstly, I cannot seem to enable NAT routing on the windows xp box.  Does anyone know how to enable this using 'netsh' as I believe that the RRAS stuff is present on an XP box, just without the GUI.

Alternatively is there a third-party NAT routing utility that doesnt come with proxy, firewall (unless I can configure the rules dynamically) etc.

TIA

TheFoot
0
Comment
Question by:Barry Jones
  • 2
4 Comments
 
LVL 12

Author Comment

by:Barry Jones
Comment Utility
OK- got the NAT working:

1) Stopped the windows firewall/ICS service
2) Started the routing and remote access service
3) Added the registry entry HKEY_LM\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\IPEnableRouter=1
4) Configured NAT using NETSH:
     netsh routing ip nat install
     netsh routing ip nat add interface "WAN" full
     netsh routing ip nat add interface "LAN" private

Now NAT routing works and clients can access the internet.

Still need to find a way to implement a firewall solution that reads its rules from a data source (text file, registry or database), something that I can change programmatically.

Thanks, TheFoot
0
 
LVL 23

Expert Comment

by:Erik Bjers
Comment Utility
0
 
LVL 12

Author Comment

by:Barry Jones
Comment Utility
Thanks Eb.  Looks good except for the fact that I cannot now enable windows firewall.  I have requested the closure of this post, and have started a new one that relates to the firewall issue:

http://www.experts-exchange.com/Security/Firewalls/Q_21920737.html

Perhaps we could continue there?

Cheers, TheFoot
0
 
LVL 5

Accepted Solution

by:
Netminder earned 0 total points
Comment Utility
Closed, 500 points refunded.
Netminder
Site Admin
0

Featured Post

Why You Should Analyze Threat Actor TTPs

After years of analyzing threat actor behavior, it’s become clear that at any given time there are specific tactics, techniques, and procedures (TTPs) that are particularly prevalent. By analyzing and understanding these TTPs, you can dramatically enhance your security program.

Join & Write a Comment

There are 2 things you must have in order to connect to the internet behind a router, The "Gateway IP" of the router, which is usually something like 192.168.xxx.1, I've seen routers with default values of: 192.168.0.1, 192.168.1.1, 192.168.11.1, …
Step by step guide to Clean and Sort your windows registry! Introduction: Always remember: A Clean registry = Better performance = Save your invaluable time In this article we're going to clear our registry manually! Yes, manually! The e…
Excel styles will make formatting consistent and let you apply and change formatting faster. In this tutorial, you'll learn how to use Excel's built-in styles, how to modify styles, and how to create your own. You'll also learn how to use your custo…
Polish reports in Access so they look terrific. Take yourself to another level. Equations, Back Color, Alternate Back Color. Write easy VBA Code. Tighten space to use less pages. Launch report from a menu, considering criteria only when it is filled…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now