This is great: it means when our users are at home/hotels, their firewall is up - but remote access over the vpn works bi-directionally.Īnd then along came Win7 (let's pretend Vista doesn't exist - not too hard!). However, I discovered we could use netsh to disable the firewall entirely on the openvpn interface: echo firewall set opmode mode = DISABLE interface = "name of openvpn interface" | netsh With openvpn, you end up with a new network interface, and when you're off the domain and vpn back to work, XP goes "domain found but I'm also on a non-domain network, so firewall up". We use AD policies to ensure the XP firewall is up when off the domain and down when on the domain. We're using openvpn to provide access back from XP to work.
0 kommentar(er)
