Closing unused ports in NT
Stephen Hope
shope at ENERGIS-EIS.CO.UK
Mon Aug 7 05:01:46 EDT 2000
Hide the thing behind a firewall - that is what they are for.
If this is something important, then a dedicated firewall system
running a mainstream firewall is my preferred option (but i work
for a reseller, so i am biased).
Plenty of this stuff can be done on non commercial platforms if
required - that is where the firewall came form after all.
If you need high bandwidth - cisco PIX.
If you want the most flexible systems, and stuff with a large
installed base you can find pre trained people already
familiar with, then checkpoint FW-1.
(and yes i do know there are lots of other options out there -
i am trying to give a couple of mainstream commercial options
as many companies want that for key systems)
Stephen
Stephen Hope C. Eng, Network Consultant, shope at energis-eis.co.uk,
Energis Integration Services Ltd, WWW: http://www.energis-eis.co.uk
Carrington Business Park, Carrington, Manchester , UK. M31 4ZU
Tel: +44 (0)161 776 4190 Mob: +44 (0)7767 256 180 Fax: +44 (0)161 776
4189
> -----Original Message-----
> From: John Wheatley [mailto:jwheatley at SWCP.COM]
> Sent: Friday, August 04, 2000 4:26 PM
> To: VPN at SECURITYFOCUS.COM
> Subject: Closing unused ports in NT
>
>
> I use Steve Gibson's port probe at www.grc.com for checking
> port status on
> public IP machines. On a typical NT machine, the port probe
> shows numerous
> ports as existing but closed. The ports report as existing
> even if the
> corresponding service has been removed from NT. Specific ports are
> 21,23,25,79,80,110,113,139,143,443. For example, I removed NetBIOS
> services using Control Panel, Network, Services; but the
> NetBIOS port 139
> still answers probes as closed. I want to have NO Response
> to unused port
> probes- is there a way?
> Help, suggestions, and comments are sure welcome.
> JohnW
>
> John Wheatley
> 505-292-4367 Voice
> 505-292-4387 Fax
> CSTI
> 10500 Research Road
> Suite 1506
> Albuquerque, NM 87123
>
> VPN is sponsored by SecurityFocus.COM
>
-----------------------------------------------------------------------------------------------------------
This email is confidential and intended solely for the use of the individual to
whom it is addressed. Any views or opinions presented are solely those of the
author and do not necessarily represent those of Energis Integration Services.
If you are not the intended recipient, be advised that you have received this
email in error and that any use, dissemination, forwarding, printing, or copying
of this email is strictly prohibited.
We have an anti-virus system installed on all our PC's and therefore any files
leaving us via e-mail will have been checked for known viruses.
Energis Integration Services accepts no responsibility once an e-mail
and any attachments leave us.
If you have received this email in error please notify Energis Integration Services Communications
IT department on +44 (0) 1494 476222..
-----------------------------------------------------------------------------------------------------------
VPN is sponsored by SecurityFocus.COM
More information about the VPN
mailing list