blocking WAN ports
Results 1 to 2 of 2

Thread: blocking WAN ports

  1. June 2nd, 2001, 01:11 AM #1
    Daufuski's Avatar
    Daufuski
    Daufuski is offline Virtual Resident
    Join Date
    Mar 2001
    Location
    East Coast
    Posts
    641

    blocking WAN ports

    Which ports would you block on a 2000 network, but still allow internet access? I have blocked 135-139 and 111. Are there any others which I should block? If this is off topic for this forum, please forgive me....Dauf
    Reply With Quote Reply With Quote
  2. June 2nd, 2001, 01:30 AM #2
    Tuttle's Avatar
    Tuttle
    Tuttle is offline Virtual Resident Cynic
    Join Date
    Feb 2001
    Location
    Adelaide, South Australia
    Posts
    6,447
    For incoming traffic, always try to work on the principle of "deny everything that isn't explicitly allowed". In general Internet usage, the only things you need to let in are TCP connections which were established from inside the firewall, traffic to any servers you may be running (eg web servers) and possibly some ICMP traffic like ping replies. What you've blocked will stop File & Print Sharing, but if someone gets infected with NetBus, SubSeven, BackOrifice etc then you're potentially stuffed - trojans like that can be configured on any arbitrary port.
    Safe computing is a habit, not a toolkit.
    Reply With Quote Reply With Quote
« Previous Thread | Next Thread »

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules