Djrobluv
asked on
PPTP Port 1723 Security Scan port as open
I went to the symantec site and used their Security Scan program to scan my network to see if it was safe. The program results said my port 1723 is open and could be used for an attack. Now I need this port open so I can VPN into my server. I am using a Linksys router BEFSR41 to forward the port to my VPN server. How can I stealth or hide this port and still be able to use it?
Presumably, a client trying to use the VPN must not only connect to the port, but then negotiate encryption and authenticate. IF you've configured your VPN well (Symantec has no way to check that!) then you've very little to worry about.
You can't stealth it as it NEEDS to be open for PPTP VPN users. I wouldn't worry too much about it.
The worse that could happen is that an intruder could find out your username and brute-force your password, so make sure you have two-factor authenitication in place (RSA SecurID / Alladin) and ensure you're logs are set to log all login attempts, and alert you if you start getting suspicious activity.
The worse that could happen is that an intruder could find out your username and brute-force your password, so make sure you have two-factor authenitication in place (RSA SecurID / Alladin) and ensure you're logs are set to log all login attempts, and alert you if you start getting suspicious activity.
Ensure you use a strong password...minimum 8 character(alphanumeric, uppercase / lowercase combination & use of special characters)...that should make it complex....
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
If you stop the VPN server but leave the port forwarding instruction then the port becomes stealthed.
If the VPN server is running then in order for you to connect the port will respond as open.