Solved

Block port 135 with group policy?

Posted on 2003-11-11
7
462 Views
Last Modified: 2013-12-23
Is there a way to block port 135 using group policy on a W2k AD. I know that xp comptuers have firewall software but I was wondering if there was a way to sotp even if it is only on the XP computers. We are trying to eradicate the last of the nachi virus.

thanks
Gary
0
Comment
Question by:macpiano
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
7 Comments
 
LVL 37

Accepted Solution

by:
bbao earned 250 total points
ID: 9738568
macpiano, good question, microsoft should add such a feature to allow group policy to block any port we need on a system, rather than only those predefined by microsoft.

ok, back to here, lets discuss how to do it before expecting ms solution. DIY at first. :))

i think it is possible, since the group policy feature is based on add-on/snap-in mechanism for flexibility. some of those policies are defined by .inf files, you may then define/edit registry settings to block a specific port by editing an existing policy file.

just for your reference, some such files on here:
\WINNT\security\templates\*.inf

hope it helps,
bbao
0
 
LVL 37

Expert Comment

by:bbao
ID: 10032945
any feedback please?
0
 

Author Comment

by:macpiano
ID: 10042435
My answer to this is that legitmate rpc traffic uses this port so it cannot be blocked.

for me case closed.

Gary
0
 
LVL 37

Expert Comment

by:bbao
ID: 10043434
Gary, have your tried something on my comment? i think it is possible. do you know you can allocate other port for rpc communication?
0
 

Author Comment

by:macpiano
ID: 10044125
We are a child domain of the state and while it might be possible to change the rpc port I have 140 other DC's to contend with. I have no control over the AD enterprise structure. The state doesn't  want us to even log into our DC's but we do. They are actually looking at a way to lock down the routers so that we only see our 4 buildings and that will decrease viruses that travel from other school districts to ours.

I have used security templates before but I take the approach the simpler is better. I don't like to make a lot of changes to group policy as we tend to forget what we have where and we usually don't have time to write it down. We have patching and viruses under control now.

Even though I did not fully use your comments I do appreciate them.
Gary
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brief overview to explain gateways, default gateways and static routes OR NO - you CANNOT have two default gateways on the same server, PC or other Windows-based network device. In simple terms a gateway is formed when a computer such as a serv…
Have you ever set up your wireless router at home or in the office to find that you little pop-up bubble in the bottom right-hand corner of Windows read "IP Conflict - One of more computers on the network have been assigned the following IP address"…
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…
In a recent question (https://www.experts-exchange.com/questions/29004105/Run-AutoHotkey-script-directly-from-Notepad.html) here at Experts Exchange, a member asked how to run an AutoHotkey script (.AHK) directly from Notepad++ (aka NPP). This video…

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question