1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Remove VPN access to file share

Discussion in 'Cisco Small Business Routers and VPN Solutions' started by wahzoo, Sep 23, 2006.

  1. wahzoo

    wahzoo Guest

    I have a linksys WRV54G setup between my home network and cable modem. On that home network I have some file shares setup on my target host.

    If I am connected via the linksys vpn utility remotely, those same shares that are visible to other computers on my home network are not showing up. If I disable windows firewall (xp) on the target then all is well. I do have the firewall configured to allow file sharing, hence why I can see the shares if I am at home on that same network with my laptop.

    Does anyone know if there are some unique ports used and likely still being blocked that would be different if I am on the network via the router vpn versus being on the network directly?
     
  2. Theli93

    Theli93 LI Guru Member

    I don't personally use Windows Firewall, but you might check this out:


    By accessing the Windows Firewall through the Control Panel you'll find the Advanced tab:

    [​IMG][/URL][/IMG]

    By highlighting your LAN and clicking on the Settings button to the immediate right you'll get:

    [​IMG]

    I'd don't know if any of those settings actually apply for what you have, but maybe it will help.

    Best of luck and hopefully someone with more experience in this area will reply.:wink:
     
  3. SoonerAl

    SoonerAl LI Guru Member

    You can configure the XP SP2 Windows Firewall custom address scope to allow access for...

    • Any computer
    • Local subnet
    • Custom (ie. specific IP addresses)
    The default is local subnet so if your VPN client is getting an IP not in the local subnet range you will not be able to gain access to shares. You can either reconfigure the firewall to allow access from any IP or better yet (IMHO and this is what I do) configure a custom address range and only allow specific IP addresses access to shares. I use that scheme to configure the Windows Firewall on my two home desktops. In my case I allow access to shares from my laptop when on the local wireless LAN, the other desktop and selected OpenVPN clients. Here is an example...

    http://theillustratednetwork.mvps.org/ScreenShots/SP2WindowsFirewall/FirewallCustomScope.JPG

    In the example, from my desktop PC, the addresses are as follows...

    10.8.0.12 => wife's desktop
    10.8.0.31 => Vpnuser1
    10.8.0.32 => Vpnuser2
    10.8.0.101 => Laptop while connected on local wireless LAN
     

Share This Page