pc micro systems
 


Home
Information
Download
Order License
User's Guide
Support
About Us


MPNT Support - How to configure the Windows Firewall and DCOM on XP SP2 OR later

If you are installing MPNT Server on a machine with Windows XP Service Pack 2 or later (including Windows Server 2003 SP1) you have to configure the Windows Firewall and DCOM settings as described below to allow incoming connections from the MPNT clients.

Windows Firewall Configuration

You can either disable the Windows Firewall completely or configure the firewall to allow inbound communication with the MPNT Server.

To disable the Windows Firewall completely, do the following:

  1. Open the Windows Firewall configuration tool from the Control Panel
  2. Select the Off option and press the OK button

    Firewall Setting 01

To configure the Windows Firewall to allow for communication with the MPNT Server service, do the following:

  1. Open the Windows Firewall configuration tool from the Control Panel
  2. Select the Exceptions tab
  3. Press the Add Program... button
  4. Press the Browse... button
  5. Browse to select the SPSRVNT.EXE file (default location is in the C:\Program Files\Spartacom\MPNT\ folder) and press the Open button
  6. Press the OK button to add SPSRVNT.EXE to the list of exceptions
  7. Press the Add Port... button
  8. Enter a name (for example DCOM137) and UDP port number 137 and click the OK button to add this to the list of exceptions.

    Firewall Setting 02

  9. Repeat Step 8 to also add UDP port 138.
  10. Repeat Step 8 to also add TCP port 139.
  11. Press the OK button to save the Windows Firewall settings. Confirm that you entered the following exceptions::
    UDP Port 137
    UDP Port 138
    TCP Port 139

DCOM Configuration

  1. Go to the Start menu, select Run..., type dcomcnfg and click the OK button

    DCOM Config 01

  2. Click on Component Services to expand it
  3. Click on Computers under Component Services to expand it
  4. Right click on My Computer and select Properties

    DCOM Config 02

  5. Select the COM Security tab. You now have to edit Limits and Default permissions for Access as well as Launch and Activation as described in the following:

    DCOM Config 03

  6. Press the Edit Limits... button in the Access Permissions section
  7. Ensure that the ANONYMOUS LOGON account is given Remote Access permissions and press the OK button

    DCOM Config 04

  8. Press the Edit Limits... button in the launch and Activation Permissions section
  9. Ensure that Everyone is given Remote Launch and Remote Activation permissions and press the OK button

    DCOM Config 05

  10. Press the Edit Default... button in the Access Permissions section
  11. Press the Add... button, add Everyone and press the OK button

    DCOM Config 06

    NOTE: Alternatively, you could add these permissions to a smaller subset of users than Everyone. One suggested way to accomplish this is to create a group named for example MPNT Users and add relevant users to this group. If this is done then substitute Everyone with MPNT Users everywhere in these configuration dialogs

  12. Ensure that Everyone is given Remote Access permissions and press the OK button

    DCOM Config 07

  13. Press the Edit Default... button in the launch and Activation Permissions section
  14. Press the Add... button, add Everyone and press the OK button

    DCOM Config 06

  15. Ensure that Everyone is given Remote Launch and Remote Activation permissions and press the OK button

    DCOM Config 08

  16. Finish the DCOM configuration by pressing the OK button
  17. Reboot the machine
Rather then disabling DCOM security, we suggest you upgrade to NetModem which uses TCP/IP rather then NetBIOS, and therefore does not use DCOM at all. Disabling DCOM security settings can make the PC vulnerable to some attacks.

 



hot deals on computers
Home | About TCP-Com | Download | Order License | Guide | Support | Company Info

Copyright © 2000 - 2004 pcmicro.com    All rights reserved