Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations bkrike on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

how do I disable ports to help secure the network?

Status
Not open for further replies.
tahoe2

tahoe2

IS-IT--Management
Dec 30, 2002
495
US
Hello. I want to stop the attacks on our W2K server running Citrix MetaFrame 1.8.
Every day the security log is full (at least 1000 entries) of failed logon attempts from workstations and domains I've never heard of.

Is there a program that will tell me what ports are open, and if not, how do I find out? How do I disable ports?

Thanks!

Corie
 
Sort by date Sort by votes
Where the HELL is your firewall!!

Regards

Jonno BrainDump Specialist
MCSE(NT) MCSA(2k) CCNA
 
Upvote 0 Downvote
It's an old linux box that the DLS line plugs into, and that's all I know about that. You think it's not doing it's thing? How can I tell, since I know nothing about hardware FW's, other than what the company that built the network told me, and thats that if I have internet access, the firewall is running.

Corie
 
Upvote 0 Downvote
ooh man.. if you are managing the network then you have to know what hardwares are on your network. You can always run a Cisco PIX firewall which is a hardware firewall to filter the ports being used. Programming Cisco PIX is not a walk in the park if you don't know what you are doing. You can look into Sonicwall which is easier to configure.

If you want to really secure your network then you can run a hardware firewall on a network layer and a software layer firewall like Microsoft ISA.

You can use a port scanner to see which ports are open.

 
Upvote 0 Downvote
You can also use IPSec filters in Windows 2000 to block/allow IP ports and subnet traffic. This is quite convenient if you are unsure how to manage/monitor the existing firewall. I realize this is redunant, but at least you will have control of what traffic is coming in and out of your network.

See the following link and refer to the IPSec section to get you started (you may need to register on this site to view the article):
 
Upvote 0 Downvote
Thanks! That guy writes very well. I was able to filter out everything that doesn't go through the firewall first. I think that will hold us until the Network Security Engineer comes out next Thursday.

I really appreciate it!

Does anybody have a favorite port scanner utility? I tried YAPS, but I can't figure out what the heck the report says.

Corie
 
Upvote 0 Downvote
NMAP is a good port scanner, and there are numerous others.

Also you can run netstat -a from the command line to show all connected and listening ports. The firewall should be blocking all ports except those that absolutely needed...email(if you host your own), FTP, Web, etc...

Good luck...

Jeff

MCSE,CCNA,ASE
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

DTGMI
  • Locked
  • Question
WIN 10 Pro PC & Adding back to our Network
Replies
0
Views
599
DTGMI
DTGMI
Abdullah Al Maruf
  • Locked
  • Question
Telnet help for
Replies
2
Views
800
gbaughma
gbaughma
mangentle
  • Locked
  • Question
What could be the potential causes if a Microsoft Windows Server is experiencing slow network!
Replies
1
Views
1K
gbaughma
gbaughma
nukeinfer
  • Locked
  • Question
Internet restrictions for isolated PCs in the Network
Replies
1
Views
636
mangentle
mangentle
microsGuy16
  • Locked
  • Question
Can not copy files to Mapped drive
Replies
0
Views
715
microsGuy16
microsGuy16

Part and Inventory Search

Sponsor

Back
Top