Configure windows 2003 firewall as a web server

Posted on 2006-03-28
Medium Priority
Last Modified: 2013-12-04

I need to increase the security on my server, i'm using a dedicated Fasthosts machine, with the standart windows firewall running,

I need someone to advice me on a firewall and respective setup of it. I was thinking on tiny server firewall 2005 professional, i've worked with it before but never got the chance to correctly set it up, but i'm open to advice on the software to use.

The server is currently "serving", WWW, FTP, and Mail.

Question by:JunkMan
  • 2
  • 2
LVL 15

Expert Comment

ID: 16314094
You want to replace the software firewall you are using now with another software firewall ?
What kind of security are you trying to increase ?
Using WWW, if you use SSL at all, you'll want access to port 443(SSL) and port 80
Using FTP, you'll want access to port 21
Using mail, you may want a variety of ports depending on the services offered.
POP3 uses port 110
SMTP uses port 25
IMAP uses port 143
If you're using SSL on the email server, let me know and I can include those ports as well.
These are general guidelines, your services could be setup to use different ports.

Author Comment

ID: 16319846
Computron: I don't have any firewall at the moment, just the standard windows one, the server was recently set up. and i need to install a firewall.

I no longer want Tiny, they were bought by Computer Associates, and support, updates were discontinued for any Tiny range of software.

So question still stands witch Firewall should i use, i need one that is effecient and simple to use and also help configuring it. The port list is helpfull but for my Tiny Firewall experience (on another server) there's more to it then just allowing/disallowing ports!

LVL 32

Accepted Solution

masnrock earned 1000 total points
ID: 16320545
You're right... ports aren't the total picture... you also want something that does stateful packet inspection to prevent certain types of attacks (i.e. SYN flood). I'm not saying Tiny didn't do that, but I'm not really familiar with the product either.

Zone Alarm Pro is a pretty good one. Used it a couple versions ago for a similar purpose.

BlackICE has always been a pretty good firewall, but I don't think you want to pay the money of the server version of it. http://www.iss.net

You might also try BitDefender - http://www.bitdefender.com/PRODUCT-14-en--BitDefender-8-Free-Edition.html#

Author Comment

ID: 16321273
masnroc: thanks but all these seem a bit to "personal" more oriented to home users...

Isn't there a "proper" keep to the basics firewall? e.g. i don't necessarely need an email scanner for the server!!

And none of them seems to work on Windows 2003... Even the Pro or Server versions..


LVL 32

Expert Comment

ID: 16322396
I wanted to recommend a hardware firewall, but it didn't really seem to be an option for you. Another major factor is what's your budget? A lot of vendors have been trying to bundle as much as they can together though.

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

As I write this article, I am finishing cleanup from the Qakbot virus variant found in the wild on April 18, 2011.  It was a messy beast that had varying levels of infection, speculated as being dependent on how long it resided on the infected syste…
In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
Please read the paragraph below before following the instructions in the video — there are important caveats in the paragraph that I did not mention in the video. If your PaperPort 12 or PaperPort 14 is failing to start, or crashing, or hanging, …
Screencast - Getting to Know the Pipeline
Suggested Courses

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question