What on Earth is Session Zero?

Steven Clark sdclark "at" cnrgroup.com
Tue Nov 1 22:20:00 2005


Swapping plugs will not change the ip address.
A bigger problem might be knowing how the IP address is assigned.
If your machines are using DHCP, the the router assigns an IP address
automatically from the pool.
This can be problematic for port forwarding.
Best practice in this case is to assign static IP addresses to the machines
that act as servers to the outside world.
(Assign addresses that are outside the range of the DHCP server in your
router).

Knowing the port addresses for services is a key part of managing any
network.
Failure to understand what is exposed and what is not is a security breach
waiting to happen.

Steven

----- Original Message ----- 
From: "Stephen" <stephen "at" sptv.demon.co.uk>
To: "William Hooper" <whooper "at" freeshell.org>
Cc: <vnc-list "at" realvnc.com>
Sent: Tuesday, November 01, 2005 2:56 PM
Subject: Re: What on Earth is Session Zero?


> ----- Original Message -----
> From: "William Hooper" <whooper "at" freeshell.org>
> To: <vnc-list "at" realvnc.com>
> Sent: Tuesday, November 01, 2005 9:32 PM
> Subject: Re: What on Earth is Session Zero?
>
>
> > Please send replies to the list.
> >
> > Stephen wrote:
> > >>> Inbound Services
> > >>> #  Enable  Service Name  Action  LAN Server IP address  WAN Users
Log
> > >>>  1   Yes Any(ALL)  ALLOW always  192.168.0.2  Any  Always
> > >>> 2   Yes Any(ALL)  ALLOW always  192.168.0.3  Any  Always
> > >>> Default  Yes  Any  BLOCK always  Any  Any  Never
> > >>
> > >> What brand and model of router?
> > > Netgear DG834GT
> >
> > Thanks.
> >
> > According to the Netgear manual, you should be creating new services to
> > forward specific ports from the internet to your internal machine.  Take
a
> > look at about page 5-12 for more information.
> >
> > >> Without more information, I would say your problem is that you are
> > >> trying to forward all the ports to two machines, so your router is
> > >> ignoring the second machine.
> > >
> > > I wasn't aware of this. I run Windows Media Encoder on both machines
> (not
> > > at the same time). This includes Windows Media Server, and remote
> > > connections from Windows Media Player are accepted by either machine.
> The
> > > router does not ignore the second machine in this case, nor for any
> > > applications running on it, like Internet Explorer or Winamp.
> >
> > Internet Explorer and Winamp don't provide services to the Internet, so
> > they wouldn't have an issue.
> >
> > > I will try swapping the ethernet cables on the router and see what
> > > happens.
> >
> > The ethernet cables have nothing to do with this.  It is the order the
> > firewall rules are applied.  Your existing rules appear to forward every
> > port from the internet to your 192.168.0.2 machine.  This probably isn't
> > desired.
>
> But is it not the case that if I swap the ethernet plugs on the router
then
> my XP machine will become 192.168.0.2, and the ME machine will be
> 192.168.0.3 ?
>
> That might be enough to get things going, until I can figure out how on
> earth I'm supposed to know every single port that every other program
might
> need so that I can do selective port forwarding.
>
> [snip]
> _______________________________________________
> VNC-List mailing list
> VNC-List "at" realvnc.com
> To remove yourself from the list visit:
> http://www.realvnc.com/mailman/listinfo/vnc-list