• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1150
  • Last Modified:

How to tell what ports are being used so that I can avoid our Cisco Firewall blocking them?

We are going to put our servers behind a cisco ASA firewall and I would like to know whats the easiest way of finding out which ports are currently being used on our Windows 2003 machines. In theory I can research online to see each software that we run what port it uses (and close everything else), but in practice this will definitely mean we will "forget" some ports and so our applications/services will not work.

Other than the standard and well known port 80, 21 and so on so forth, is there an application I can use to show me which ports are currently being used?
0
leontas
Asked:
leontas
2 Solutions
 
BertlingCommented:
if you are moving all your servers to a DMZ you and you want to permit all required packets from the end users to the servers these are the ports i can think of:

RPC: 135
DNS: 53
LDAP: 389
Gloal catalog searches: 3268
SMTP: 25
HTTP/s: 80 & 443
Netbios: 139
SMB: 445
if you have databases: 1433
FTP: 21

you can also run netstat on all your servers you want to move to see what ports they have sessions with to particualr nodes or servers.
0
 
Jay_GridleyCommented:
You could also try installing a trial version of PRTG traffic grapher to get a history of a few days of the traffic going to your server. The trial is obviously free and should be long enough for you to get insight in  what traffic your server passes.

Download it from: http://www.paessler.com/prtg/
0
 
leontasAuthor Commented:
Thanks Jay, I'll try that too!
I have been away for the past few days so I haven't had the chance to also thank Bertling for his suggestion as well!
Will try the software and get back with info!
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now