Re: What is the different between opening one port and a thouand ports on a firewall?

From: RT (russandsandy@no.slimey.spammers.attbi.noteven.com)
Date: 03/28/03

• Next message: WizzyWoW: "Re: Netscreen remote software and address resolution"
• Previous message: RT: "Re: What is and what is not inside a company firewall."
• In reply to: Patrick Lam: "What is the different between opening one port and a thouand ports on a firewall?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

From: "RT" <russandsandy@no.slimey.spammers.attbi.noteven.com>
Date: Fri, 28 Mar 2003 01:34:23 GMT

If it's a concern, check out BISP (Black Ice Server Protection). You can
tune the firewall to let all the ports you need through (or turn it off
altogether) and still have the IDS "watching" for vulnerabilities and
blocking intrusive activity.

RT

"Patrick Lam" <patrickl@astri.org> wrote in message
news:b5s2bm$1sge$1@news.hgc.com.hk...
> Dear all:
>
> I am trying to setup a VoIP system in my office so that employees from my
> company can call in/out to other their IP soft phones at home.
>
> However, this kind of deployment requires me to open up all the ports
above
> 1024 into the server with a public IP. However, not every port is
> constantly listening for incoming (UDP) traffic. What it does is that it
> only creates a UDP socket on demand, and closes it when it's done. As a
> result, although all the ports are let through (for this particular
server),
> only a few of them are actually active (being created and receiving UDP
> packets) at any moment.
>
> Is this dangerous? What can hackers do to the server or LAN under this
> situation?
>
> Actually what is the difference between opening 1 port and many port (but
no
> listening sockets behind) on a firewall?
>
> Thanks very much in advance,
>
> Patrick
>
>

---

• Next message: WizzyWoW: "Re: Netscreen remote software and address resolution"
• Previous message: RT: "Re: What is and what is not inside a company firewall."
• In reply to: Patrick Lam: "What is the different between opening one port and a thouand ports on a firewall?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Re: Interesting webserver intrusion (apache 1.3.31, mod_ssl 2.8.18, php 4.3.7) ... > fairly tight(only allowing 4 ports in), but perhaps I could tighten it ... The host systems firewall rules govern the access to the jailed system. ... What connections does your server need to ... Perhaps there is a 0-day for your ftp server out there. ... (Incidents) Re: Add 2nd NIC after intial install? ... My biggest question with 1 NIC is: even if workstations are protected with individual firewall products, what is protecting the SBS server itself if ports are open for remote access through the Linksys firewall? ... (microsoft.public.windows.server.sbs) Re: Source Code to Filter out WindowsMessenger POP-UPS ... Zone Alarm does NOT support 'server'. ... Very few ports are open, ... >What you are asking for amounts to a firewall. ... I would NOT search for source code to compile ... (microsoft.public.inetserver.iis.security) Re: Using Office Outlook with exchange server behind windows firewall ... On our network I have windows firewall turned on, on both my small business server and my windows xp workstations. ... Based on an article I read about all the ports that exhange may use I also tried making exceptions for ports ... (microsoft.public.windows.server.sbs) Re: NETFW.INF, Preconfigured Firewall settings and dialogs ... it is Windows Server 2003 SP1 firewall that i'm using. ... Using the document '832017 Port Requirements for the Microsoft Windows ... > to achieve the following goal: some ports are open by default and others ... (microsoft.public.windows.server.networking)

---

We are proud to have Web Hosting and Rack Housing from 9 Net Avenue Deutschland.
(12)