Solved

Windows Firewall on SBS 2003

Posted on 2011-02-27
4
442 Views
Last Modified: 2012-05-11
I have recently reviewed a small office network that is running SBS 2003 and CA ITM eTrust.

The Windows Firewall is currently disabled, and there is no other firewall enabled on Server as far as I can tell. There is ofcourse the Internet Router providing protection to the outside world but still a concern.

What are the recommendations as far as recommending the firewall being enabled and what exceptions I will need to consider to limit downtime to Users?
0
Comment
Question by:Flipp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 70

Expert Comment

by:KCTS
ID: 34993294
It all depends on what its being used for, if there is no remote access, no OWA then you can lock it down very tightly. Personally I would not rely on the Windows firewall alone - its simply not robust enough.
0
 
LVL 6

Author Comment

by:Flipp
ID: 34993322
Roles:
Internal DNS
Domain Controller
RRAS
OWA
Active Sync
File & Print

I would of thought there would be some doco on standard ports that would be opened .... ?
0
 
LVL 70

Accepted Solution

by:
KCTS earned 500 total points
ID: 34993383
There is http://support.microsoft.com/kb/832017
But as MS say this should not be used to configure the windows firewall
0
 
LVL 6

Author Closing Comment

by:Flipp
ID: 34993421
Thanks.

I was hoping there would be a list of 'mostly used ports/exceptions' that I could focus in on. THis is a fairly standard SBS, but understand that not every server is the same.
0

Featured Post

Secure Your Active Directory - April 20, 2017

Active Directory plays a critical role in your company’s IT infrastructure and keeping it secure in today’s hacker-infested world is a must.
Microsoft published 300+ pages of guidance, but who has the time, money, and resources to implement? Register now to find an easier way.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

A brand new malware strain was recently discovered by security researchers at Palo Alto Networks dubbed “AceDeceiver.” This new strain of iOS malware can successfully infect non-jailbroken devices and jailbroken devices alike.
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question