Advertising page

[Lex]

Hi
I run a Win2000 server with a connection to the internet
which is shared to the internal network using NAT.

People send advertising pages from the internet which are
displayed on the screen of the server.

I would like to block them out, But I do need access to my
network for web server , Email server and telnet to run a
business program.

Any answers?

Thanks

 

[Steven Umbach]

It sounds like your firewall is misconfigured or you are not using one for that
computer. Go to http://scan.sygatetech.com/ to do a basic vulnerability
assessment for that server and see if you have netbios/smb ports exposed such as
135,137,138,139,445 udp and or tcp which would indicate extreme vulnerability.
If you do not need file and print sharing on that server to share resources to
the lan then disable it in network connections/lan connection properties though
you still need a properly configured firewall. You should block all traffic from
the internet to that server except those ports necessary for you applications
which probably are port 80 tcp for http web [443 tcp also if sinning secure
SSL], port 23 tcp for telnet, and port 25 tcp for mail smtp. Your application
may require more or maybe not. Also try to allow access to those ports from only
a specific internet address or addresses for authorized users. I hope you are
using W2K telent client so that you are using ntlm authentication at least. ---
Steve