I am trying to use ICS to allow another computer on my local network to access the internet through this computer. I have PCTFP installed on this machine only, which has 2 NICs, one for cable router and one for LAN - the firewall is enabled on the cable router NIC address.

File sharing and remote desktop work fine when connecting to the other computer, but I cannot access the internet from it. I created a new rule that allows outbound connection to my ISP's DNS server range, and placed it above UDP: Any Other UDP, but still cannot access internet. It seems now that the connection is being blocked by TCP: Any other packet when attempting to connect to the IP of the website. Obviously, I don't want to create a rule for each website that I want to visit...

Am I missing some settings? Need more rules? Please help.

I am trying to use ICS to allow another computer on my local network to access the internet through this computer. I have PCTFP installed on this machine only, which has 2 NICs, one for cable router and one for LAN - the firewall is enabled on the cable router NIC address.

File sharing and remote desktop work fine when connecting to the other computer, but I cannot access the internet from it. I created a new rule that allows outbound connection to my ISP's DNS server range, and placed it above UDP: Any Other UDP, but still cannot access internet. It seems now that the connection is being blocked by TCP: Any other packet when attempting to connect to the IP of the website. Obviously, I don't want to create a rule for each website that I want to visit...

Am I missing some settings? Need more rules? Please help.

Hi,please read this thread,especially post #4. Hope this helps.
http://www.wilderssecurity.com/showthread.php?t=155934&highlight=looknstop+ics

Thanks for the link. However, I don't like the idea of allowing all those ports to be visible (even if they are closed), which that setup would do. Also, I have TCP : Authorize most common Internet services unchecked in order to hide those ports.

I found a way around this problem by adding a new rule above TCP : Any other packet that allows out/in TCP connections to remote port 80 where the local IP is my address. Now my LAN machine can connect and browse normally.

If anyone knows a better way to do this, please post.

Thanks again for the help.

NOTE: I also had to create a rule exactly like the one mentioned above, but for port 443 (for secure sites - https).

Settings:

adapters - allow all traffic
filtering - enable stealth mode

Advanced Rules:

Just check box for TCP/UDP: authorize server ports (internet & trusted)

check security by running test here https://www.grc.com/x/ne.dll?rh1dkyd2