The options are "Permit All" or Permit Only" I have set "Permit Only" with
the port listed.
Since I can't possibly list every outgoing port above 1023, whats the
solution to locking it down because I want to do this to other machines?
Like a mail server that will need to do DNS lookups.
Mike K
-----Original Message-----
From: mwagers@teamhuber.com <mwagers@teamhuber.com>
To: ntisp@iea-software.com <ntisp@iea-software.com>
Date: Tuesday, February 23, 1999 5:31 PM
Subject: Re: [NTISP] IP Port filtering in NT
>
>
>Filter coming in, out, or out AND in?
>
>For going out, the port starts at 1023+, so that could be your problem. The
>destination is 53.
>
>
>
>
> To: ntisp@iea-software.com
>
> cc: (bcc: Mitch Wagers/Teamhuber)
>
>
>
> Subject: [NTISP] IP Port filtering in NT
>
>
>
>
>
>
>
>
>
>I am setting up a new server and want to lock it down.
>
>I set port security to block all ports except those listed below. Now DNS
>lookups no longer works
>
>25 TCP
>53 TCP/udp
>80 TCP
>110 TCP
>123 TCP/udp
>
>Any ideas?
>
>Mike K
>
>
>
>For more information about this list, including removal,
>see this url: http://www.iea-software.com/maillist.html
>
>
>
>
>For more information about this list, including removal,
>see this url: http://www.iea-software.com/maillist.html
>
For more information about this list, including removal,
see this url: http://www.iea-software.com/maillist.html