?
Solved

XP Firewall changes - how to find. printer sharing over IPSEC tunnel

Posted on 2011-04-20
4
Medium Priority
?
253 Views
Last Modified: 2012-05-11
Hi All,

a very strange thing has happened to a system I look after. It has been working happily for several years. A POS/Accounting program runs on a central Windows Server 2003 (NOT SBS) and several remote shops connect in and use it via RDP. There is a snapgear SG-300 at each end with an IPSEC tunnel set up.

Originally, the server (via IP addresses) could ping and access devices on the shops LAN, including connecting to a docket printer local to the shops PC (via windows share). The server can also print to an networked Laser printer in the shop.

The server has an IP address of 192.168.0.253; the shop PC in question is 192.168.7.100.

So, a couple of weeks ago, no docket printer. It is there locally but the server cannot see it. The server can still happily print to the networked laser printer and the shop PC can happily bring up an RDP session.

After much hair pulling I disabled the windows firewall on the Shop PC and everything worked again.

So somehow (I suspect windows updates) the windows firewall settings have been changed. But exactly what I can't find.

I have tried resetting the firewall back to defaults and making sure windows file and printer sharing is allowed - no joy.

Any suggestions? Any ideas where to look?

I know it works but I'd rather not leave the PC with it's firewall disabled.

Many thanks,

Bob
0
Comment
Question by:drbobs
  • 2
3 Comments
 
LVL 8

Accepted Solution

by:
psychogr earned 2000 total points
ID: 35452514
Enable firewall logging of dropped packets so we can troubleshoot it.

Go to Control panel -> Security Center -> Windows Firewall
Hit "Advanced" tab and click on Security Logging Settings button.
Click on "Log dropped packets" and choose a folder to store your logfile.

Post log files here for further assistance
0
 

Author Comment

by:drbobs
ID: 35471080
Thanks psychogr,

I will try that.

Bob
0
 

Author Comment

by:drbobs
ID: 35822653
I haven't followed this up.

i am happy to accept the proposed solution.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Enterprise networks where VoIP phones have been deployed frequently use port configurations that allow both a computer and an IP phone to be plugged into the same switch port but use different VLANs. On Cisco equipment I'm referring to the "native V…
Trying to figure out group policy inheritance and which settings apply where can be a chore.  Here's a very simple summary I've written which might help.  Keep in mind, this is just a high-level conceptual overview where I try to avoid getting bogge…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question