56 lines
3.3 KiB
HTML
56 lines
3.3 KiB
HTML
|
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
|
||
|
|
<!-- saved from url=(0100)file://\\mantisqa\ovrdaily\mantis\hlp\jonburs\_internet_connection_sharing_component_description.htm -->
|
||
|
|
<HTML
|
||
|
|
dir=ltr><HEAD><TITLE>Internet Connection Sharing Component Description</TITLE>
|
||
|
|
<META http-equiv=Content-Type content="text/html; charset=Windows-1252">
|
||
|
|
<STYLE type=text/css>@import url( td.css );
|
||
|
|
</STYLE>
|
||
|
|
|
||
|
|
<META content="MSHTML 6.00.2479.0" name=GENERATOR></HEAD>
|
||
|
|
<BODY topMargin=0>
|
||
|
|
<H1><A
|
||
|
|
name=_internet_connection_sharing_component_description></A><SUP></SUP>Internet
|
||
|
|
Connection Sharing Component Description</H1>
|
||
|
|
<P>Internet Connection Sharing allows multiple computers to use a single public
|
||
|
|
Internet Protocol (IP) address. One computer, the Connection Sharing server, is
|
||
|
|
connected to a public network and a private network. The Connection Sharing
|
||
|
|
server modifies packets from computers on a private network that are destined
|
||
|
|
for a public network so that such packets appear to come from the Connection
|
||
|
|
Sharing computer. Likewise, the Connection Sharing server modifies packets
|
||
|
|
received from the public network to send them to the appropriate computer on the
|
||
|
|
private network.</P>
|
||
|
|
<P>Connection Sharing provides security for computers on the private network
|
||
|
|
because private computers are not directly addressable from a public network.
|
||
|
|
There is no way for a computer on a public network to send unsolicited traffic
|
||
|
|
to a computer on a private network. </P>
|
||
|
|
<P>The Connection Sharing server also provides Dynamic Host Configuration
|
||
|
|
Protocol (DHCP) and Domain Name System (DNS) services to the private
|
||
|
|
network.</P>
|
||
|
|
<P>Internet Connection Firewall (ICF) extends the security that Connection
|
||
|
|
Sharing provides to computers on the private network. ICF also provides security
|
||
|
|
to the Connection Sharing server computer or a standalone computer, such as a
|
||
|
|
computer that is connected to a single public network. By keeping track of the
|
||
|
|
network traffic that programs on the computer generate, Connection Sharing
|
||
|
|
prevents unsolicited traffic from being processed by the computer. </P>
|
||
|
|
<H1>Component Configuration</H1>
|
||
|
|
<P>The main access point for the Connection Sharing and ICF configuration is the
|
||
|
|
<B>Advanced</B> tab of the network connection properties. This user interface
|
||
|
|
(UI) allows a user to enable and disable Connection Sharing and ICF and to
|
||
|
|
configure various aspects of their operation. The following list describes these
|
||
|
|
aspects:
|
||
|
|
<UL type=disc>
|
||
|
|
<LI>Enabling or disabling autodial for Connection Sharing when the public
|
||
|
|
connection is not always on, for example, for a dial-up connection.
|
||
|
|
<LI>Enabling or disabling the ability for Connection Sharing client computers
|
||
|
|
to alter the Connection Sharing configuration.
|
||
|
|
<LI>Exposing services provided by a computer on the private network or on a
|
||
|
|
computer protected by a firewall to the public network. For example, the
|
||
|
|
service could open ports in the firewall, and optionally map ports to specific
|
||
|
|
computers on the private network.
|
||
|
|
<LI>Firewall logging configuration. The firewall can log dropped packets or a
|
||
|
|
connection's creation or removal.
|
||
|
|
<LI>Firewall Internet Control Message Protocol (ICMP) configuration. </LI></UL>
|
||
|
|
<H1>Special Notes</H1>
|
||
|
|
<P>The IP_NAT must be installed to use Connection Sharing or ICF.
|
||
|
|
</P></BODY></HTML>
|