ports to be blocked

[Guest]

hi
i an using demand dial gateway machine with RRas in win2000, which ports
should i keep open to secure my network?help me

 

[Samir Jain [MSFT]]

I presume you are using demand dial VPN.
On your public Interface, deny all except
L2TP (UDP Port 500 for IKE, UDP Port 4500 for NAT-T, UDP Port 1701)
PPTP (TCP Port 1723, IP Protocol ID=47)

You can do this easily in RRAS Basic firewall OR Static filters

 

[Guest]

how to enable basic firewall in RRas.help me.i am using dial up for gateway
machine as an one external interface not for vpn ,only for routing for
internet access.help me