port blocking on Windows 2000/2003 servers
From: Phil McNeill (philmcneill_at_NOSPAM4MEhydroottawa.com)
Date: 11/23/04
- Next message: Miha Pihler: "Re: Server Logins"
- Previous message: AjjuAjju: "Re: Restrict Logon Location"
- Next in thread: Steven L Umbach: "Re: port blocking on Windows 2000/2003 servers"
- Reply: Steven L Umbach: "Re: port blocking on Windows 2000/2003 servers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 23 Nov 2004 11:05:52 -0500
Hi,
I am looking for recommendations on what would be the best thing to use to
lock down all unneeded ports on Windows 2000 Server and Windows Server 2003
servers. Basically, we are looking at implementing policy that will have us
not only ensuring all unneeded services are disabled, but ensuring some kind
of packet filtering is in place on each individual server that will block
all port access except those specifically defined as allowed. We will
likely want to get as granular as specifying which servers/clients can talk
to which other servers/clients.
1. How many other people out there are doing this, and how onerous of a
task is it to implement/manage?
2. What's the best thing to be using to do it with? IPSEC policies, or do
I want some kind of software firewalls on each server?
Thanks for any and all tips/advice.
Phil
- Next message: Miha Pihler: "Re: Server Logins"
- Previous message: AjjuAjju: "Re: Restrict Logon Location"
- Next in thread: Steven L Umbach: "Re: port blocking on Windows 2000/2003 servers"
- Reply: Steven L Umbach: "Re: port blocking on Windows 2000/2003 servers"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
