Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Shaun E on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Filter incoming connections to ports internally

Status
Not open for further replies.
StockcarsRus

StockcarsRus

IS-IT--Management
Jun 9, 2003
100
US
We recently had a company do internal vulnerability scans on our servers and workstations. Alot of the findings were "Warnings", for example:

"Warning found on port net-bios-ssn (139/tcp)
The domain SID can be obtained remotely. Its values is...

An attacker can use it to obtain a list of the local users of this host.

Solution: filter the ports 137 to 139 and 445

In W2K advanced server, how do I go about filtering ports incoming?

Thanks for any help.

 
Sort by date Sort by votes
These ports 137/139/445 are needed for Windows communication. If you filter these ports, your internal network will no longer work.

The key is to make sure that you protect these ports from the Internet. So make sure that you are not allowing these ports to communicate over your firewall.

Again, internally, these ports are fine. Just make sure that these ports are going over your firewall.

Joseph L. Poandl
MCSE 2003

If your company is in need of experts to examine technical problems/solutions, please contact (Sales@njcomputernetworks.com)
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

DTGMI
  • Locked
  • Question
WIN 10 Pro PC & Adding back to our Network
Replies
0
Views
639
DTGMI
DTGMI
microsGuy16
  • Locked
  • Question
Can not copy files to Mapped drive
Replies
0
Views
788
microsGuy16
microsGuy16
tscstl
  • Locked
  • Question
access to local folder
Replies
1
Views
403
hairlessupportmonkey
hairlessupportmonkey
DrB0b
  • Locked
  • Question
HyperV trying to do extended replica to external HDD
Replies
0
Views
267
DrB0b
DrB0b
DrB0b
  • Locked
  • Question
Windows 2016 IIS FTP server with a ton of user accounts
Replies
4
Views
887
DrB0b
DrB0b

Part and Inventory Search

Sponsor

Back
Top