Re: UDP Port 500 open

From: anon (eny1enywhere@hotmail.com)
Date: 05/11/02 

From: eny1enywhere@hotmail.com (anon)
Date: 10 May 2002 15:04:47 -0700

OK, i've found the service called "IPSEC Services" in mmc/services and
it is lsass.exe, so do i just click stop and then disable?

I don't quite get what you're going on about in the "THE SEPARATE
FIREWALL LOCATED OUTSIDE..." bit. I use a free software firewall
rather than buying an expensive one. Do I just set-up a filter rule
then?

Thanks for you help so far.
eny1enywhere@hotmail.com

phn@icke-reklam.ipsec.nu wrote in message news:<abh0o4$i81$3@nyheter.crt.se>...
> anon <eny1enywhere@hotmail.com> wrote:
> > I have recently installed a firewall and it says that UDP Port 500 is
> > open?
> > Firstly, what is this port for? and is it dangerous?
>
> ISAKMPD uses this port to negotiate IPSec. It _should_ be fairly
> safe to leave open, but if you don't use IPSec i would suggest
> standard procedure - close it.
>
> > Secondly, I'd like to close it down. I use Windows XP Home Edition as
> > my operating system, and the executable that owns the port is
> > lsass.exe in c:\windows\system32. How do I close the port? I thought
> > perhaps a registry key and/or disabling some service or other in
> > mmc/services.
>
> I would close it in THE SEPARATE FIREWALL LOCATED OUTSIDE a windows system.
> ( you did not got the impression that a firewall could be made as
> a software add-on in a windows system ??)
>
> > Thirdly, it's bound to every adapter. Can I only bind to my LAN
> > adapter so that it isn't exposed to the web? How do I do this?
>
> > Thankyou in advance to any help you might be able to give
>
> > eny1enywhere@hotmail.com

Relevant Pages

  • Re: Win2K Security & Firewall - long post
    ... IPSec, and more so some reasons why it might be a bad idea for MS to ... realize that tailoring an IPSec policy for a specific home user, ... disabled their personal firewall. ... Won't work if the malware uses a "legitimate" means of disabling ...
    (comp.security.firewalls)
  • Re: Win2K Security & Firewall - long post
    ... coupled with the fact that most Win2K users are not home users. ... > the regard of disabling insecure functionality within specific ... > of whether or not IPSec is a good thing or not it is just one of those ... > disabled their personal firewall. ...
    (comp.security.firewalls)
  • Re: How do I open Port 3389
    ... message that it was already being used for Remote Desktop Connection. ... I find out if there is an application using this port already? ... I will test turning off the firewall when I am ... I haven't tried disabling it; I will do that when I'm ...
    (microsoft.public.windows.server.sbs)
  • Re: sysvol replication breaks when IPSec running between DCs & firewal
    ... Also have a look here about UDP port 500: ... open the firewall for ports required by IPSec, ... We have two root DCs and three child domain DCs. ...
    (microsoft.public.windows.server.active_directory)
  • Closing Port 135 and 1025
    ... Even due ports can be filtered with IPSEC policies, ... to disable unnecessary services to close the ports. ... port 135 and 1025 are still open. ... but when disabling ipsec filtering you can even enumerate port ...
    (microsoft.public.windows.server.security)