• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 332
  • Last Modified:

Windows 7 Firewall Question with Peer to Peer network and VPN.

I have two small peer to peer networks at separate locations connected with a SonicWall site to site vpn. I have a Windows 7 Pro machine at one location that I have a shared folder on that users use as a "pseudo" server. I would like the users on the other side of the vpn to have access to that folder but Windows 7 is seeing that network as being a public network and not allowing access to the shared folder. Turning the firewall off on that machine allows access but that's not an acceptable solution. Is there a way to allow or to tell Windows firewall the other network is private or trusted ?
0
raysteinhauser
Asked:
raysteinhauser
1 Solution
 
David Johnson, CD, MVPOwnerCommented:
if it has a static ip address you can allow that address in the firewall settings
0
 
Davis McCarnOwnerCommented:
Your easiest fix is to change it to a Work network instead of Public.
0
 
raysteinhauserAuthor Commented:
Both sides are set to work, it appears since they are on different subnets across the vpn it is seeing the other side as public.
0
Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

 
raysteinhauserAuthor Commented:
What would I allow through the firewall ? Can I set an exception to allow the entire subnet for the other side of the vpn ?
0
 
Fred MarshallPrincipalCommented:
Here is an article that deals with this.

It's a matter of setting up firewall scopes for File and Printer sharing rules that are already there.
Just add the remote subnet.
Windows-7-File-and-Printer-Sharing-betwe
0
 
VB ITSSpecialist ConsultantCommented:
What would I allow through the firewall ? Can I set an exception to allow the entire subnet for the other side of the vpn ?
Yes you can.

Go to Control Panel > open Windows Firewall > click on Advanced settings on the top left corner > click on Inbound rules in the Windows Firewall with Advanced Security window that appears > locate the File and Printer Sharing (SMB-In) entry on the list that is assigned to the Public group and right click it > go to Properties > go to the Scope tab > in the Remote IP address box, click on Add > in the This IP address or subnet field type in the subnet for the remote network (e.g. 192.168.1.0/24) > OK > OK when done
0
 
raysteinhauserAuthor Commented:
Perfect answer, thanks.
0
 
Fred MarshallPrincipalCommented:
It seems to me that SMB-In is only one of the firewall rules that might be productively changed.
As in the instructions I provided.....
0
 
raysteinhauserAuthor Commented:
Nothing personal, I saw both solutions and was prepared to try them both. I tried the other one first because it was one paragraph and it worked so I gave him the points. Thank you both for responding.
0

Featured Post

SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now