Thursday, 25 March 2010

Creating a Bridge with Two Internal Adapters on a Windows XP Internet Connection Sharing Host Does Not Work

To Manually Create the Network Bridge and Enable ICS


Disable ICS and Internet Connection Firewall (ICF) on the public interface. After you do this, ICS and ICF should not be enabled on any network connection on the computer. To disable ICS and ICF:

Click Start, click Control Panel, click Network and Internet Connections, and then click Network Connections.

Right-click the Internet connection, and then click Properties.

Click the Advanced tab.

Clear the Protect my computer and network by limiting or preventing access to this computer from the Internet check box if it is selected.

Clear the Allow other network users to connect check box if it is selected.

Click OK in each dialog box until you return to the Network Connections folder.

In the Network Connections folder, select the two adapters that you want to use to create the bridge. Make sure that neither of the adapters is the connection to the Internet. To select two network adapters, first click one network connection. Then, hold down the CTRL key while you click the second network connection.

Right-click either connection, and then click Bridge Connection. Windows XP creates a network bridge by using the two network connections you specified. After this process is finished, continue with the next step.

In the Network Connections folder, right-click the Internet connection, and then click Properties. Remember that the Internet connection cannot be one of the connections that you used to create the bridge if your intent is to run ICS or ICF on the Internet connection.

On the Advanced tab, select the Allow other network users to connect check box to enable ICS. Remember that because you have bridged two network connections together, both network adapters that are used in the bridge are on the internal side of ICS, and clients from either network can access the Internet.



NOTE: If you have more than two potential internal networks, ICS requires that you specify which network should be the private network that is used by ICS. For example, you may have one network connection to the Internet, two additional network connections that are part of a bridge, and a fourth network connection (for example, a wireless connection). In this example, either the wireless connection or the bridged connection could be configured as the private ICS network. If your intent is to have both the current bridged connections and the wireless connection be configured as the private ICS network, you must add the wireless connection to the bridge. If you do not, you must choose which network is the private ICS network, and which network is allowed to access the Internet through the Windows XP-based ICS host.



To add an additional adapter to the network bridge:

Right-click the network bridge in the Network Connections folder, and then click Properties.

On the General tab, make sure that each adapter that should be configured as part of the bridge has a check mark next to it in the Adapters list.

Click OK to have the bridge bind any new adapters.

It is a good idea to completely configure the bridge before you enable ICS or ICF on the Internet connection.





Select the Protect my computer and network by limiting or preventing access to this computer from the Internet check box if your intent is to protect this computer and other computers on the private network from the Internet.

Click OK in each dialog box until you return to the Network Connections folder. Close the Network Connections folder.

Enable ICS again if it has been disabled. Note that you cannot create a bridge by using the shared (public) ICS connection and the private ICS connection because of the design of ICS and network address translation (NAT) in general. Attempting to do so results in the following error message:

To create a Network Bridge, you must select at least two network connections that are not being used by Internet Connection Sharing or the Internet Connection Firewall

No comments:

Post a Comment