Please help me to resolve the problem. There is a small network at my home - two PC with Windows XP SP3 on both.
First PC is connected to the internet and have a wireless network card. Second PC have a wireless network card too and connected to the 1st PC directly - without any wireless routers and anything else. Internet connection is shared on the 1st PC so the 2nd PC can used it.
The Norton Internet Security 2011 is installed on the first PC. I have a full access to the Internet from this PC. But the second PC doesn't see any Internet site at all. If I switch off firewall on the 1st PC then it's possible to use Internet from 2nd PC.
I am sure that it is not a problem of NIS 2011 - I just don't know that rule I should create in firewall rule list to allow the 2nd PC to use Internet.
Welcome to the Norton Community. Can you tell us your version of NIS 2011 from Support > About?
How are the two computers connected together if you do not have a home router or anything?
From the main NIS 2011 user interface window on PC #1 click on "Network Security Map". Do you see PC #2 listed there? Click on the icon representing PC #2 and below that look for where it says "Trust Level". Click on the "Edit" button to the right of this. Set PC #2 to Full Trust. It is probably currently at the default which is "Use Network Trust".
You may need to do the same on PC #2, setting PC #1 to Full Trust.
Do you have a router or a DSL box? Is the wired PC showing the wireless PC in the Network Security Map? Do you have a home network set up on the machines? Is there anything showing as blocked in the Norton history under firewall activities?
Oh, thank you for advises. I will try all of them tomorrow.
About your questions:
Version of product is NIS 2011 - 18.5.0.125
> How are the two computers connected together if you do not have a home router or anything?
> Do you have a router or a DSL box?
I am using direct PC to PC connection - Windows network system allows to create this kind of connection. So I don't have any special equipment except the PCs themselves. And network is working good - as I said then I switch off firewall second PC starts to use the Internet connection from 1st PC.
> I assumed the user is using ICS. I may be wrong.
You absolutely right. I juts forgot to mention it when I was writing my first message.
> user said both PC's are XP SP3, I think we can assume 32 bit.
I have tried to make a permitting rule for the second PC as you said and it did nor help. I also tried to make a permitting rule for the whole home wireless network because IP-address of the second PC is not permanent. Unfortunately it did not help too - second PS cannot use the Internet.
In the history list I see that my new rule is working - there are a lot of records in it like this:
04.01.2011 11:17,Info,"Rule \"Firewall Rule for wrireless home network\" permitted (192.168.0.203, ICMP (3:Destination unreachable)). Outbound ICMP request.",Detected,No Action Required,Firewall - Activities
(192.168.0.203 is the IP-address of the second PC)
The strange thing is "Destination unreachable" sign because I have tried to visit the absolutely working web-site.
I attached the full log to this message. May be it will be useful.
Did you move the firewall rule to the top of the list?
Did you also try to set the other computer to FULL TRUST as I mentioned in my earlier post?
I would recommend setting this from both computers.
I will try to read through the log but it is very difficult because it put everything together as ONE long string of text.
Did you check the NIS events on both computers? If you see a lot of the same messages you can bring up details of the event by double clicking on the entry to bring up more detail. Then while the window is active hit Alt + Print Screen on your keyboard. Bring up Microsoft Paint and hit Ctrl + V. Then save the image to your desktop. You can attach this image to your post by clicking the image at the top of your reply editor. Then browse to the image and click Insert.
Is it still true that disabling the NIS firewall resolves the problem? If so which computer do you have to do this on, or both?
Welcome to the Norton Community. Can you tell us your version of NIS 2011 from Support > About?
How are the two computers connected together if you do not have a home router or anything?
From the main NIS 2011 user interface window on PC #1 click on "Network Security Map". Do you see PC #2 listed there? Click on the icon representing PC #2 and below that look for where it says "Trust Level". Click on the "Edit" button to the right of this. Set PC #2 to Full Trust. It is probably currently at the default which is "Use Network Trust".
You may need to do the same on PC #2, setting PC #1 to Full Trust.
Let us know if this works.
AllenM, thanx for your advice. I have checked these settings and set the trust level to the second PC to "Full trust". But it did not help :(.
NIS is installed only on the first PC, second PC have only anti virus software. I have not installed any firewalls on it.
What is the wireless network security set to on each PC? (This is in the Network Connections / Center part of the Control Panel in Windows.) Also, is the XP firewall active in PC2? Have you rebooted your systems (both PC1 and PC2) after making the Full Trust setting? Can you look in the drop down box in the Network Security Map under Network Details) and tell us how many networks are detected? Usually there are only two listed; wired [Local Area Connection] (or wireless) and Trust Control. You may have three listed and need to work on the wireless network not the Local Area Connection (which should be the wired connection).
> Did you move the firewall rule to the top of the list?
Yes. This rule is on the top, above all over rules.
> Did you also try to set the other computer to FULL TRUST as I mentioned in my earlier post?
> I would recommend setting this from both computers.
Yes, I did it too. But as I said the second PC does not have any firewalls at all.
> I will try to read through the log but it is very difficult because it put everything together as ONE long string of text.
Hmm, it is strange. My text editors show this file correctly.
I have tried one more thing - I have created general rule that permits any activity from any PC using any network protocol on first PC and put it on the top of the rule list.
But second PC still don't have the access to the internet. Isn't it the same as I just switch off the firewall?
In addition to what Dbrisendine said, from my earlier post:
Is it still true that disabling the NIS firewall resolves the problem? If so which computer do you have to do this on, or both?
Best wishes.
Allen
Yes, it's is still true. If I disable firewall on the first PC then second PC starts using internet. If I enable firewall on th first PC then second PC stops using internet. I have checked it right now.
Yeah I just realized the problem with reading your text file attachment. It brought it up in Notepad by default which notoriously has the problem of not displaying lines correctly sometimes.
I saved it locally to my computer and then brought it up with Wordpad and it came up correctly.
I still see some blocking going on in the firewall logs.
Please make sure and check the Network Security Map closer as suggested earlier by Dbrisendine here.
I dont have this set up but can I suggest you try the following.
From the main user interface open Network Security Map
Can you establish the IP address of the 2nd PC?
If so on the main PC, go to settings, network settings,
smart firewall
advanced settings
general rules
click configure
set up new rule
allow connections to and from
only the computers and sites listed below
enter the IP address of the 2nd PC
having created the rule, move the rule to the top
please advise
When you made the above rule, did you check "TCP and UDP" (which comes up as a default) or did you change that to "All"? Please check the created rule and make sure that "All" is selected in the Communications / Protocol part of the rule. Your ICMP packets are being blocked (this shows up in your logs); these are not typically classified as TCP or UDP packets and are necessary to establish a network connection (or two way communication). Then test your communications and tell us the results. Thanks.
What is the wireless network security set to on each PC? (This is in the Network Connections / Center part of the Control Panel in Windows.)
Security is Open, If I understand your question correctly.
Also, is the XP firewall active in PC2?
No, I disabled.
Have you rebooted your systems (both PC1 and PC2) after making the Full Trust setting?
Yes.
Can you look in the drop down box in the Network Security Map under Network Details) and tell us how many networks are detected?
I see only 3 items in network drop down box: 1 Trust control and 2 networks: internet connection network and wireless home network.
Usually there are only two listed; wired [Local Area Connection] (or wireless) and Trust Control. You may have three listed and need to work on the wireless network not the Local Area Connection (which should be the wired connection).
Yes, you right. I see three items. And I set Trust level on the wireless network and on my second PC.
I removed that question.
image at the top of your reply editor. Then browse to the image and click Insert.