Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 473
  • Last Modified:

Activesync problems after installing windows firewall

After a recent virus scare we decided to enable windows firewall via a GPO, this is fine for the most part, but since then our directors PDA has not synced with ActiveSync 4.1.

I have added the port exceptions as instructed by microsoft, as follows:
26675:tcp:172.23.0.0/16:enabled:activesync1
5678:tcp:172.23.0.0/16:enabled:activesync2
5679:tcp:172.23.0.0/16:enabled:activesync3
5721:tcp:172.23.0.0/16:enabled:activesync4
990:tcp:172.23.0.0/16:enabled:activesync5
999:tcp:172.23.0.0/16:enabled:activesync6

.....and program excpetions as follows:
C:\Program Files\Microsoft ActiveSync\CEAPPNGR.exe:*:enabled:ActiveSync
C:\Program Files\Microsoft ActiveSync\rapimgr.exe:*:enabled:ActiveSync
C:\Program Files\Microsoft ActiveSync\wcescomm.exe:*:enabled:ActiveSync
C:\Program Files\Microsoft ActiveSync\WCESMgr.exe:*:enabled:ActiveSync

Yet it is still not working and the heat is begining to build. I have attached a copy of the Pfirewall.log from the user computer.

Any ideas would be very greatfully received.
pfirewall.log
0
nmmhelpdesk
Asked:
nmmhelpdesk
  • 2
1 Solution
 
mds-cosCommented:
Disable Windows firewall.  I promise you that it is giong to cause a LOT more headaches than it will possibly resolve.

For the virus problem, get good anti-virus & anti-malware software packages and maintain it / them properly.
0
 
sfarazmandCommented:
Make sure the don't allow exceptions is not checked. Also Activesync should add the correct exceptions on it's own. Try reinstalling or upgrading to the current version 4.5 (if compatible).

Also see this page below.

http://www.microsoft.com/windowsmobile/en-us/help/synchronize/activesync-usb.mspx
0
 
warturtleCommented:
I suggest that you have a look here and check what IPs have been allowed to use the ActiveSync.

http://www.pocketpcfaq.com/faqs/activesync/windowsxpsp2firewall.htm

Hope it helps.
0
 
mds-cosCommented:
Clarification for future generations reading this thread ;-)

Windows Firewall has it's place, and can be indispensable in some environments.  For example, anybody connecting to the Internet using dial-up, public hot-spot, or any other technology that puts a computer onto a shared, non-trusted network should have a firewall running.  Not so much to protect against viruses or malware (best defense against these is software specifically designed for the task) -- but to protect against other people who my want to hack into a system for various reasons.

In other environments, however, the firewall adds no value and creates support headaches.  An example of this would be in a corporate network.  A proper business network already has edge firewalls, already has other network and system security measures in place, and should be restricted to use by "trusted" users.  So turning on the Windows firewall is just going to mess with things and make support more difficult.
0

Featured Post

New feature and membership benefit!

New feature! Upgrade and increase expert visibility of your issues with Priority Questions.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now