Is turning on printer file sharing ok when using a network hub that's not a router when connected to the internet if I am using a non MS firewall. I am probably going to get the activation key for AVG's firewall. I would rather not have to buy a new router as well. My current hub is a linksys EFAHO5W 10/100 Wally World special ethernet.
Is it safe to turn on printer/file sharing when networking?
- Thread starter bedlam_4
- Start date
- Status
D
DelJo63
your question has both YES & NO answers, depending upon how flexible the firewall
can be configured AND your ability to get it so configured.
1) the public side (ie: WAN) gets its address from your ISP. If you're getting
attacked by WWW hackers, this is where they gain access. You can not allow
ports 135 & 445 to be exposed to the WAN without major risk.
2) the private side (ie: LAN) has addresses like 192.168..., 10...., 172....
and these can NOT be accessed from the WAN. Your other systems may
use File/Print sharing by just asking for it.
As you have a hub and not a router, you may also have PUBLIC ip addressses.
run ipconfig /all to verify
3) the trick is to ALLOW LAN access but DISALLOW WAN access
This simple way is to delcare the 192.168.... as a trusted subnet.
(this can not be used of you have PUBLIC ip addresses).
Another is a specific rule and ensure this rule is near the top of the firewall configuration.
eg: ALLOW 192.168.x.y tcp/udp ports 135,445
Now IF you have PUBLIC ip addressses, then subsititue those for the 192.168.x.y above.
As a means to verify your config, you can LOG these rules and also
log access denied by
MONITOR ALL tcp/udp ports 135,445 and place it immediate BELOW the ALLOW rule.
Once you're statisfied, you can stop the logging.
can be configured AND your ability to get it so configured.
1) the public side (ie: WAN) gets its address from your ISP. If you're getting
attacked by WWW hackers, this is where they gain access. You can not allow
ports 135 & 445 to be exposed to the WAN without major risk.
2) the private side (ie: LAN) has addresses like 192.168..., 10...., 172....
and these can NOT be accessed from the WAN. Your other systems may
use File/Print sharing by just asking for it.
As you have a hub and not a router, you may also have PUBLIC ip addressses.
run ipconfig /all to verify
3) the trick is to ALLOW LAN access but DISALLOW WAN access
This simple way is to delcare the 192.168.... as a trusted subnet.
(this can not be used of you have PUBLIC ip addresses).
Another is a specific rule and ensure this rule is near the top of the firewall configuration.
eg: ALLOW 192.168.x.y tcp/udp ports 135,445
Now IF you have PUBLIC ip addressses, then subsititue those for the 192.168.x.y above.
As a means to verify your config, you can LOG these rules and also
log access denied by
MONITOR ALL tcp/udp ports 135,445 and place it immediate BELOW the ALLOW rule.
Once you're statisfied, you can stop the logging.
- Status
Latest posts
-
Logitech thinks the computer mouse needs an AI upgrade- Dimitrios replied
-
Lenovo is first to announce LPCAMM2 memory-equipped laptop- Shawn Knight replied
-
US TikTok ban could begin next year as Biden signs law, but legal battle looms- dirtyferret replied
