Easy way to block specific ports Windows 2000 Server

Hi,

We recently had our Windows 2000 Server hacked via VNC. I was wondering if
any experts could provide advise on the following. Forgive my naive
understanding of this process.

(1) How does one get access via VNC? Does one need to have a VNC Server on
the server end or does Windows 2000 have an inherent VNC built in?

(2) We were thinking of blocking all ports except 80,8080,443, 3389 (for
remote desktop), 5631 (For PcAnywhere), 21 and 25. Is this a reasonable
approach? I saw a few articles on using IPsec to do this but I can't find
any straightforward instructions how to block specific ports. Can anyone
provide any instructions / links to articles that show how to do this?

Thanks for any help anyone can provide,

Zoom


.

Relevant Pages

  • Re: VNC - How do I type # ? (and other questions)
    ... 1hd325i.1wu5tk9zx69szN%black.hole@xxxxxxxxxxxxxxx, "Jon B" ... work in Chicken of the VNC. ... The server (Windows XP) ends up seen a plain old 3. ...
    (uk.comp.sys.mac)
  • Re: VNC - How do I type # ? (and other questions)
    ... Chicken of the VNC. ... The server (Windows XP) ends up seen a plain old 3. ... I can't believe a 100 base LAN isn't quick ...
    (uk.comp.sys.mac)
  • Re: VNC - read: Connection reset by peer
    ... server from my remote Windows Vista computer, ... Connection reset by peer " from the vnc client running on the Windows ...
    (Fedora)
  • vnc through ssh for windows
    ... and authentication of server and viewer. ... >VNC protocol is non-encrypted, and the password security is laughable. ... > I'm using Remote Desktop to manage my Windows XP clients and Windows ... with ssh as the transport????? ...
    (Security-Basics)
  • Re: Easy way to block specific ports Windows 2000 Server
    ... We recently had our Windows 2000 Server hacked via VNC. ... in the W2k IPsec filtering that exist in order to allow initial Kerberos IKE ...
    (microsoft.public.win2000.security)