B
Bill Tomlinson
I am interested in applying the IPSec Packet filters that are recommended in
the TechNet Security section: "Hardening Specific Server Roles - ch7."
I have looked up all the ports that are "Listening" on my default W2k server
(using portqry), and there are many that will be filtered out if I use the
filters suggested.
I would like to determine a methodology for deciding which 'additional'
ports I will need to "allow" through my IPSec packet filter.
For example my tape backup software has a centralized console that
communicates to the other backup-clients on my other servers to allow them
to be managed from one source. I am assuming that this software uses
'ports' to communicate over the network. If this is a true assumption then
could I use the network monitor in SMS 2.0 to capture this communication,
and determine from the captured packets which port(s) it is using?
Are there tools, techniques, strategies that you can recommend to manage
this process of "mapping" out the ports you need to create filters for?
Thanks
BT
the TechNet Security section: "Hardening Specific Server Roles - ch7."
I have looked up all the ports that are "Listening" on my default W2k server
(using portqry), and there are many that will be filtered out if I use the
filters suggested.
I would like to determine a methodology for deciding which 'additional'
ports I will need to "allow" through my IPSec packet filter.
For example my tape backup software has a centralized console that
communicates to the other backup-clients on my other servers to allow them
to be managed from one source. I am assuming that this software uses
'ports' to communicate over the network. If this is a true assumption then
could I use the network monitor in SMS 2.0 to capture this communication,
and determine from the captured packets which port(s) it is using?
Are there tools, techniques, strategies that you can recommend to manage
this process of "mapping" out the ports you need to create filters for?
Thanks
BT