Re: What remote ports should I allow for IE ?
From: Kerodo (kerodonospamkenny_at_hotmail.com)
Date: 09/29/04
- Next message: Alan: "Soft vpn to Zywall 10"
- Previous message: Mike: "Re: openvpn & ms pptp"
- In reply to: Brendan DJ Murphy: "What remote ports should I allow for IE ?"
- Next in thread: Don Kelloway: "Re: What remote ports should I allow for IE ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Wed, 29 Sep 2004 09:56:34 -0700
In article <cjeega$hid$1$8300dec7@news.demon.co.uk>,
brendan@cpac.REMOVE.org.uk says...
> Whats the best way to configure a firewall for Internet Browsing?
>
> My Kerio rule is set to allow the following:
>
> Protocol TCP(Out)
> Local Port: Any
> Remote address: Any
> Remote Port: Any
> Application: c:\.....\iexplore.exe
>
> In other words, Internet Explorer is allowed to talk to anything it likes on
> any port.
>
> Again, similar to an earlier post, how can I tighten this down. It looks
> too "open" for my liking.
>
> I could add a list of remote ports
> eg: 80, 8080, 443(for secure https) etc
>
> What is the recommended list of remote ports to allow for IE?
I just use 80,81,443,8080 here. That seems to cover most situations.
You can start with that, and then if Kerio needs to connect to any other
remote ports while browsing, it will prompt you and you can either ok it
once, or add those ports to your rule.
-- Kerodo
- Next message: Alan: "Soft vpn to Zywall 10"
- Previous message: Mike: "Re: openvpn & ms pptp"
- In reply to: Brendan DJ Murphy: "What remote ports should I allow for IE ?"
- Next in thread: Don Kelloway: "Re: What remote ports should I allow for IE ?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
