Solved

Implementing a firewall - ports?

Posted on 2006-07-18
4
168 Views
Last Modified: 2010-04-18
Hi all,

Back in January we purchased a PIX firewall for our webserver, and I have decided I best get around to having it setup properly!

What I need to do is define what ports to allow access to. Now I know there are the basics like port 80 for the website and 21 for FTP, etc but I am not sure what else i need to allow. Is there a program I can get that will tell me what ports are currently open and been used?

And on the other hand, are there any ports that I definately should NOT allow access to?

We run our server from a remote location, so we use Remote Desktop Connection to admin the server, and we also deploy ASP.NET applications on the server.

Any help would be great!
Thanks - Lee
0
Comment
Question by:leta37
  • 2
  • 2
4 Comments
 
LVL 29

Accepted Solution

by:
mass2612 earned 500 total points
ID: 17136094
Hi,

"netstat -a" will give you a list of all connections and listening ports.

I think RDP uses TCP 3389. Sorry, I don't know any specifics on ASP.net.

This link has some basics on blocking ports - http://techrepublic.com.com/5100-6228-5033634.html#
0
 

Author Comment

by:leta37
ID: 17136153
Is there any third party applications I could possibly use to get the list of connections - ie. with a GUI and logging so I can print it off etc?
0
 
LVL 29

Expert Comment

by:mass2612
ID: 17136239
Sorry I'm sure there are but I don't know of any off the top of my head. "netstat -a > filename.csv" will make things a bit easier to read if you can get the file to a workstation.
0
 

Author Comment

by:leta37
ID: 17136254
thx mass!!!
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Preface Having the need * to contact many different companies with different infrastructures * do remote maintenance in their network required us to implement a more flexible routing solution. As RAS, PPTP, L2TP and VPN Client connections are no…
Scenerio: You have a server running Server 2003 and have applied a retail pack of Terminal Server Licenses.  You want to change servers or your server has crashed and you need to reapply the Terminal Server Licenses. When you enter the 16-digit lic…
This video discusses moving either the default database or any database to a new volume.
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…

743 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now