Transcript: Windows XP Networking, July 22, 2004
Published: August 3, 2004
Chat Date: July 22, 2004
Please note: Portions of this transcript have been edited for clarity
Introduction
Moderator: KenM (Microsoft)
Welcome to today's chat. Our topic is Windows XP Networking. Questions, comments, and suggestions are welcome.
Moderator: KenM (Microsoft)
I'll now have the hosts introduce themselves.
Host: scottman (Microsoft)
Hello. I am Scott Manchester - Lead Program Manager in the Windows Home Network Experience Team. I look forward to your Questions and feedback. Thanks,
Host: Charles (Microsoft)
Hi, I'm Charles Porter. I'm the test lead for the Windows Network Configuration Infrastructure. We own testing most of the Network Connections folder, the Networking Class Installer and Binding Engine, and parts of the Networking wizards.
Host: Jeff (Microsoft)
Hi, I’m Jeff Damphier a software developer in test in the Network Experience group. I’ve been working at Microsoft for the last 7 years
Moderator: KenM (Microsoft)
Ken McGrath here, Web and Communities Producer.
Host: KevinC (Microsoft)
Hi, I am Kevin Cao, test lead for the Windows Networking Peer 2 Peer platform.
Host: Sean (Microsoft)
Hello, I am Sean Lyndersay - Lead Program Manager in the Windows Networking User Experience team, responsible for wireless, among other things.
Host: scottman (Microsoft)
Hello. I am Scott Manchester - Lead Program Manager in the Windows Home Network Experience Team. I look forward to your Questions and feedback. Thanks!
Start of Chat
Host: scottman (Microsoft)
Q: Can subnet masks be used as a security tool?
A: In Windows XP SP2 we are shipping a new and improved firewall (renamed Windows Firewall) that allows you to restrict network traffic globally or via subnet. By defining a smaller subnet you can reduce your attack surface but for home networks a subnet of 255 isolated nodes is typical.
Host: KevinC (Microsoft)
Q: When are we getting XP SP2?? Definitive date?
A: Late August 2004
Host: Sean (Microsoft)
Q: How do I change the login style for XPPro. I want it with the ctr-alt-del style like when you are part of a domain. But without being in a domain. I want to be able to "lock" my PC with Ctr-Alt_del.
A: To change the login style use the information in the following KB article: http://support.microsoft.com/default.aspx?scid=kb;en-us;291559. As a tip, if you want to Quickly lock your machine use Win+L (that's the Windows key plus "L")
Host: scottman (Microsoft)
Q: My Mac running System X has no trouble seeing shared files on my XP machine on my network, but the XP system refuses to see the Mac. Any way to see the Mac's shared files?
A: This is easy to fix. Buy a PC :) It may be that your MAC file shares are not automatically discovered (MAC is not responding to Netbios reQuests). Have you tried accessing the shares using the machines IP address instead of Netbios name?
Host: Jeff (Microsoft)
Q: When I added a second adapter to my laptop network connection time slowed. I only use one (wireless) most of the time. I read something about persistent routes/interface but was not clear as to exactly how I add one.
A: You will want to bring up a command window and take a look at “route add”. 1. Start with “route print” to see a list of interfaces and routes on your computer. 2. Find the adapter you are interested in and do a wiled card route add on it. 3. Like s
Host: scottman (Microsoft)
Q: reduce attack surface?
A: By turning on the Windows Firewall and then subseQuently opening ports to allow unsolicited network traffic for your local subnet you are reducing the potential attack surface from ever computer on the internet to the PC's on your local subnet. In the case of a typical home network, that is 250 nodes max.
Host: Jeff (Microsoft)
route ADD 192* MASK 255.0.0.0 192.168.0.1.80.1 METRIC 3 IF 2” destination^ ^mask ^gateway metric^ ^
Host: Jeff (Microsoft)
fixing my cut and past
Host: Jeff (Microsoft)
A: example for shois route ADD 192* MASK 255.0.0.0 192.168.0.1 METRIC 3 IF 2
Host: Sherwood (Microsoft)
A: on the route add, you'll want to add a -p to the cmd if you want the route to persist over a reboot
Host: Sean (Microsoft)
Q1: I have been using the same router for about 3 years now. Last month I was unable to connect to the network. The provider of the router had me change the media type for the network card from auto select to 10Mbps full duplex.
Host: Sean (Microsoft)
Q2: That fixed the problem...did something change in XP that would cause this to happen?
Host: Sean (Microsoft)
A: As far as we know, nothing in XP changed that would cause this. The setting you changed is a driver-specific setting. I don't want to point fingers, but it's mostly likely something to do with the provider's driver.
Host: Jeff (Microsoft)
Q: on the route, thanks the automatic metric was 20. Is that wrong?
A: Metric gives weight to a particular interface. The lower the number the more likely the interface will be used.
Host: Charles (Microsoft)
Q: throughout my day I have to renew my ip address (ipconfig /renew) I do this because at times I am unable to access web sites that we host (when I am behind the firewall) when I renew the IP I can then access the sites again. This happens a few times
A: Are you noticing any differences in settings when you renew? Run (ipconfig /all) before and after the renew, and see if any of the settings are changing. Also, check when your lease expires (at the bottom of ipconfig /all).
Host: scottman (Microsoft)
Q: I was trying to network a LAN game with a Linksys router and for Windows machine. One is XP pro One is XP home the other two are win2000 Pro. Would XP networking need to be installed on the 2000 machines to make them work?
A: You should install the "File and Print Sharing for Windows" service on all machines. You will also need to ensure that you have the proper ports opened on your firewalls (XP SP2 will make this much simpler).
Host: scottman (Microsoft)
Open the following ports in your firewall - UDP137 UDP138 UDP445 TCP445 TCP139
Host: scottman (Microsoft)
Q: Why does XP want to set up files on other computers when running the networking wizard? What is it doing and is it important to do?
A: The wizard creates a floppy disk with the wizard app on it to help you configure other machines on your home network. It performs the following tasks: Install TCP/IP (w/DHCP), Install File Sharing Services, Install UPnP Stack, Enable File and Print
Host: scottman (Microsoft)
Q: Scottman Thank you. Security Question. Will leaving these ports open when I am not game leave me vulnerable on the firewall to the outside?
A: You can open these ports for the local subnet only. The only threat is that someone one your home network attempts to attack your PC (unlikely unless a PC in the home becomes infected).
Host: scottman (Microsoft)
Q: scottman, What do you mean by opening the ports only for the local subnet only?
A: With the Windows Firewall you can open ports based on the local subnet for example if your subnet is 192.168.0.XXX than any IP address in the range 192.168.0.1 - 192.168.0.255 is allowed.
Host: scottman (Microsoft)
A: (cont): If you open the ports globally then any IP address is allowed in (the entire internet)
Host: scottman (Microsoft)
A: BTW - The Windows Firewall in XP SP2 supports Subnet / Global port restrictions. Prior to SP2 you will need to use a third part FW to get this functionality.
Host: Sean (Microsoft)
Q1: We have a wireless network here in the office. Instead of using WEP we only allow certain MAC addresses to access the wireless network. Some instances XP shows that "multiple wireless connections are available" the available
Host: Sean (Microsoft)
Q2: connections are viewed (only one shows up) and it is selected and the box is checked to allow the connection to happen even though it's not secure
Host: Sean (Microsoft)
Q3: after saying ok...the same message shows up again "multiple wireless connections are available" and the same process is repeated. Bottom line is the machine never connects to the wireless network.
Host: Sean (Microsoft)
A1: What you're describing is the pre-SP2 behavior that occurs when the PC attempts to connect to the access point, but the connection fails. The most common reason for that is that the access point refuses to respond,
Host: Sean (Microsoft)
A2: which implies that your MAC filtering is blocking that PC. In SP2, we've made some fixes tell you when that's occurring (it won't fix your problem, but it should be easier to understand what's going on). So be sure to pick up SP2!
Host: Sean (Microsoft)
To follow up on that, I just wanted to plug Service Pack 2 for Windows XP. I highly recommend that people install it as soon as they get it. We've made tons of improvements and fixes in the Networking aren
A: new Firewall, new Wireless Network Setup Wizard, new Wireless user experience, updated Network Setup Wizard. You can pick up the test version here: http://www.microsoft.com/SP2Preview, and install the final version through Windows Update in Aug
Host: scottman (Microsoft)
Q: Where do you turn off the printer and shared drive discovery for XP. Every time I go to a lan party... I come back with 40 printers installed.
A: Are you referring to the list of shared resources that show up in My Network Places? These are cached shares (and typically limited to 30).
Host: scottman (Microsoft)
A: I will need to investigate if there is a method to remove these cached shares. . .I will whisper with you to get your email address.
Moderator: KenM (Microsoft)
Thanks for joining us today and thanks for the Questions. It's time for us to go now. Please see the chats schedule for upcoming topics.
For further information on this topic please visit the following:
Newsgroups: Windows XP General Discussion
Transcripts: Read the archive of past Windows XP chats.
Website: Visit the home page for Windows Powered Smart Display
