RE: Win IPTables?

• Previous message: Bénoni MARTIN: "ASP trouble with IIS 6.0 security"
• Maybe in reply to: Bénoni MARTIN: "Win IPTables?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 28 Apr 2004 15:59:37 +0200
To: "Ivan Andres Hernandez Puga" <ivan.hernandez@globalsis.com.ar>, Bénoni MARTIN <Benoni.MARTIN@libertis.ga>

 Use the IPSEC filters to protect a host.
You can also export them and inport them if you want to use a generic template.

I suggest a basic "drop bad ports" config.

Eric

http://www.microsoft.com/windows2000/en/server/help/default.asp?url=/windows2000/en/server/help/ipsec_filter-spec_create.htm

-----Original Message-----
From: Ivan Andres Hernandez Puga [mailto:ivan.hernandez@globalsis.com.ar]
Sent: 27 April 2004 09:16 PM
To: Bénoni MARTIN
Cc: security-basics@securityfocus.com
Subject: Re: Win IPTables?

If you are about to open just the port 80 you can use the very robust (but extremely uncomfotable) win32 kernel filters.
Search for the TCP/IP Filtering options under the Options Tab of your ethernet card.
Also if you run in troubles, use netstat -an and search for the broken connections from your machine.
Ivan Hernandez

Bénoni MARTIN wrote:

>Hi community,
>
>I have been trying to find out if there was an equivalent of iptables under a Windows box.
>
>I have an Windows 2003 box, with an IIS and an SQL Server 2000 running on it (I know it would be better to set that up on two different machines, but well... :) ), and I was wondering how to secure it with a personal FW.
>
>Any idea will be welcomed!
>
>Cheers!
>
>

---------------------------------------------------------------------------
Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off any course! All of our class sizes are guaranteed to be 10 students or less to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field pen testing experience in our state of the art hacking lab. Master the skills of an Ethical Hacker to better assess the security of your organization.
Visit us at:
http://www.infosecinstitute.com/courses/ethical_hacking_training.html
----------------------------------------------------------------------------

• application/x-pkcs7-signature attachment: smime.p7s

• Previous message: Bénoni MARTIN: "ASP trouble with IIS 6.0 security"
• Maybe in reply to: Bénoni MARTIN: "Win IPTables?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]