Since MS improved the built-in firewall with SP1, I've been experimenting with turning it on and creating exceptions for the ports and services I use. Is anyone doing this successfully?
So far I have File & Printer sharing enabled and my Symantec AntiVirus server services enabled. I need to find out how to allow DNS, DHCP, and AD traffic. So far I have found, but not tested the following:
DHCP - Enable tcpsvcs.exe for local subnet.
DNS - Enable dns.exe for local subnet (also could use port 53 TCP/UDP).
AD - Enable lsass.exe for local subnet.
Any problems that you guys see with this? Am I missing anything critical? I found a very helpful page here that deals with it.
Full Version: Server 2003 SP1 Firewall Exceptions
Open the Windows Firewall control panel item, go to Advanced, select a Network Connection and click Settings.
Select the services you want allowed. Done!
Select the services you want allowed. Done!
QUOTE(Menge @ Apr 6 2005, 15:05)
Open the Windows Firewall control panel item, go to Advanced, select a Network Connection and click Settings.
Select the services you want allowed. Done!
[right][snapback]585736209[/snapback][/right]
Select the services you want allowed. Done!
[right][snapback]585736209[/snapback][/right]
Appreciate the help, but the services I need to enable aren't on that list.
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.