Solved

SBS 2011 Block Ports On Workstation

Posted on 2013-06-01
5
786 Views
Last Modified: 2013-06-06
Recently my network got hit by a spamming virus/malware. I need to block email ports on all the workstations. I read other forums that suggest I use IPSec via GPO to block specific ports on the workstations, but none of them are very detailed.

I open the Group Policy Management, but not sure where to go from there to create a new GPO?
0
Comment
Question by:datzent83
  • 3
  • 2
5 Comments
 
LVL 56

Expert Comment

by:Cliff Galiher
ID: 39213185
Unfortunately in the case of malware, it often can and does disable firewall rules. So using software or group policies is insufficient. You must block it at the network edge with appropriate UTM/firewall rules.
0
 

Author Comment

by:datzent83
ID: 39213225
Can you please give me the steps on how I can block it at the network edge with appropriate UTM/firewall rules.
0
 
LVL 56

Expert Comment

by:Cliff Galiher
ID: 39213279
Each UTM is different. Configuring a SonicWall is very different than configuring a Cisco which is again VERY different than Watchguard. So no, no easy way to give you a step by step.
0
 

Author Comment

by:datzent83
ID: 39213345
I don't have a hardware firewall. My SBS is my DHCP. I need to make sure that port 25 passes only through the SBS server.
0
 
LVL 56

Accepted Solution

by:
Cliff Galiher earned 500 total points
ID: 39213379
There is no way to enforce that. SBS is not a gateway/edge device. And that is where such rules are enforced. Even small businesses should have a UTM at their edge. The companies I listed above all make small business devices and price them accordingly.
0

Featured Post

Save on storage to protect fatherhood memories

You're the dad who has everything. This Father's Day, make sure your family memories are protected. My Passport Ultra has automatic backup and password protection to keep your cherished photos and videos safe. With up to 3TB, you have plenty of room to hold the adventures ahead.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Login to computer through Admin Priviligies 9 88
Network Router- Access control List 4 54
eigrp in site-to-site vpn 4 15
Migrating from SBS - cont 17 16
If you are a user of the discontinued Microsoft Office Accounting 2008 (MSOA) and have to move to a new computer running Windows 8, you will be unhappy to discover that it won't install.  In particular, Microsoft SQL Server 2005 Express Edition (SSE…
This paper addresses the security of Sennheiser DECT Contact Center and Office (CC&O) headsets. It describes the DECT security chain comprised of “Pairing”, “Per Call Authentication” and “Encryption”, which are all part of the standard DECT protocol.
This Micro Tutorial will teach you how to censor certain areas of your screen. The example in this video will show a little boy's face being blurred. This will be demonstrated using Adobe Premiere Pro CS6.
With the power of JIRA, there's an unlimited number of ways you can customize it, use it and benefit from it. With that in mind, there's bound to be things that I wasn't able to cover in this course. With this summary we'll look at some places to go…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now