newbie question about firewalls and proxys

From: Hanne van Essen (hanne.van.essen_at_floris-automatisering.nl)
Date: 05/16/03

• Next message: saeengineer: "Re: Sygate Personal Firewall Pro 5 and Windows XP Professional ?"
• Previous message: Norbert: "ZoneAlarm Pro"
• Next in thread: Leythos: "Re: newbie question about firewalls and proxys"
• Reply:(deleted message) Leythos: "Re: newbie question about firewalls and proxys"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Fri, 16 May 2003 15:13:52 +0200

Hi,

I have a website on port 80 of a Apache web server, and a router. In the
router is a firewall. I have configured a Default Data filter in the
firewall to only let through traffic on port 80. This works partly. From
a lot of places I can't see my website, no problem. But some people are
not able to see my website. They get:

Problem Report
 The system detected an Unresolved Host Name while attempting to resolve
the
host specified in the requested URL.

Message ID
 UNRESOLVED_HOSTNAME

Problem Description
 DNS resolution failure encountered.

Possible Problem Cause
 The host entered has a mistake, or the requested Web site is
temporarily
unavailable in DNS.

Possible Solution
 Examine or correct any mistakes, or try again at a later time.

If I disable the firewall then people can see the website again, but not
immediately, usually a day after disabling the firewall. Someone told me
this has something to do with proxy servers? And that some machines will
call my website on a different port than 80. I am confused. How can I
know which port anybody will use to get to my website? How do I
configure my firewall so that it is safe, but my website is available?
Can anybody explain this??

Very grateful greetings,

Hanne van Essen.

---

• Next message: saeengineer: "Re: Sygate Personal Firewall Pro 5 and Windows XP Professional ?"
• Previous message: Norbert: "ZoneAlarm Pro"
• Next in thread: Leythos: "Re: newbie question about firewalls and proxys"
• Reply:(deleted message) Leythos: "Re: newbie question about firewalls and proxys"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages RE: Blocking Port scans ... it is not a function of a firewall to block / ... If you want to detect port scans you need IDS functionality, ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on shopping carts, ... (Pen-Test) RE: multiple websites on sbs2003 server ... Are you using ISA or a standard firewall/router? ... firewall router, all you'll get is your default website. ... that basic firewall can do is PORT forward. ... (microsoft.public.windows.server.sbs) Re: IIS on SBS 2003 behind COX Cable... ... Under 'network connections', get to the network adapter in question, and ... to the exceptions tab and add a new port. ... firewall and see port 81 services. ... I have the default website up and running and configured to my>>> external LAN Card. ... (microsoft.public.inetserver.iis) Re: Blocking Port scans ... It is easy to bypass firewall portscan protection and even IDS ... > detect port scans. ... > Audit your website security with Acunetix Web Vulnerability Scanner: ... Up to 75% of cyber attacks are launched on shopping carts, ... (Pen-Test) Re: SBS 2003 R2 Setup for T1 and Web Site Hosting ... but when I try to do a search for the firewall router ... Given that your customer has Standard and not Premium a firewall like is the ... As far as the website, I will recommend they go to an outside host, since ... the SBS server is also their main company server. ... (microsoft.public.windows.server.sbs)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > comp.security.firewalls  > 2003-05