New
#1
Dual NIC Firewall machine problems...
My question is a bit complicated, so please be patient while I explain what I need...
I have many machines behind a single firewall machine. The firewall machine is dual ported (2 NICs) and the network is segmented (192.168.0.x for the external segment and 192.168.1.x for the internal segment). Everything is wired, no wireless. The external segment connects to a router out to the Internet. The internal segment connect to a hub/switch which connects to all the other machines on the local LAN.
The firewall machine was running XP for many years, but the hardware was failing, and the OS needed to be upgraded. Done. We now have new hardware running Windows 7 Pro x64.
All of the machines behind the firewall were already running Window 7 Pro x64, only the firewall machine has changed.
OK, by turning on the appropriate services in the new firewall machine and enabling packet forwarding in the registry, it appears to be working. The machines on the local LAN can connect through the firewall machine to the Internet.
I want to use the Window 7 firewall software in the new firewall machine. It provides the security for the local LAN, all the other machine on the LAN are trusted and their Windows 7 firewalls are turned off.
To make this work correctly, the firewall machine needs to be actively connected to two networks, which it is, but here is where my problem begins. Windows 7 thinks both networks are public. I need the external network to be public, and the internal network to be work/private. Then, I could configure the Windows 7 firewall to to use the public profile on one NIC and the private profile on the other NIC, have the firewall turned on for both NICs, and everything is back to the way things worked with the old XP machine (which was NOT running the XP firewall software but instead a third party firewall application which allowed separate profiles for individual NICs).
So, here is the question (finally) - how do I change the internal network connection to private? The Network and Sharing Center show multiple networks connected, both public (showing the bench icon). I can click on the bench icon for the external network to bring up the “Set Network Properties” panel and change it's name and icon if I want, but it's already configured correctly. The other network is labeled “Unidentified network”, and although I can click on the its bench icon to display the “Set Network Properties” panel, nothing is editable. In fact, other than the NIC's hardware configuration (IP address, DNS servers, etc.) nothing about this internal “Unidentified network” seems to be configurable at all, yet it's apparently working as expected.
How do I change this internal “Unidentified network” from public to work/private?
Comment – the network icon on the task bar shows a red “X”, in spite of the fact that TWO networks are connected and working. I expect this is coupled to the “Unidentified network” problem. Windows 7 is apparently confused (or I am )
Final note – I'm not using ICS because all the IP address are static. I have a good reason for doing this, which is not going to change, so please, ICS is off the table, since it's incompatible with static addressing.
Thanks in advance for any/all help.