What Ports Have to Be Open to Map a Drive Through a Site-to-Site VPN Tunnel?
Posted on 2008-11-14
We have a client with a laptop in an untrusted domain who is running Windows XP Professional SP2. We have established a site-to-site VPN tunnel between the client's company and our own. We need him to be able to map a drive to a member server in our own domain, a server dedicated for use by their company. We have created a local user ID on our server with the same password to enable pass-through authentication. If no firewall rules are applied to the tunnel he is able to map a drive. If I enable only the "Netbios" ports, 137 through 139 and SMB port 445, the user is no longer able to map a drive. Again, this is not using remote desktop or anything, it is simply mapping a drive letter to a UNC share through the tunnel. We have added the server name in his HOSTS file so it is not a name resolution issue. What am I missing? Thank you...