|
Posted by Gary J. Dikkema on December 5, 2006, 5:57 pm
Please log in for more thread options ... er AND 444
> The max ports you need on a SBS open are
>
> 25 mail
> 4125 -RWW
> 443 SSL
>
> Do not open 80 or 21
>
> Additional Ports
> 1723 - VPN PPTP
> 3389 - RDC to server (But Please of course always have "SECURE Pass
> Phrases"
>
> Russ
>
> --
> Russell Grover
> SBITS.Biz
> Microsoft Certified Small Business Specialist.
> MCP, MCPS, MCNPS, (MCP-SBS)
> Remote SBS2003 Support
> http://www.SBITS.Biz
>
>
>
>> Hi Franky
>>
>> Welcome to SBS land (thanks Roger, we will help best we can)
>>
>> Franky, How long server been running?
>> Does it have two network cards in ?
>> How is it connected to the internet, server connected to ? and what
>> connected to internet.
>>
>> Is this Premium or Standard (Premium has ISA)
>>
>> First concern I have is Port 139, indicates file and printernsharing
>> network card connected directly to internet.
>>
>> Recommended SBS configuration with two network cards...
>>
http://www.smallbizserver.net/Articles/tabid/266/articleType/ArticleView/articleId/74/Default.aspx
>>
>>
>>> SBS is a special breed of Windows server.
>>>
>>> You would by far get the best advise by asking in
>>> microsoft.public.windows.server.sbs
>>> to which this is x-posted for you.
>>>
>>> You say no webserver (but it is there) etc., and if
>>> there is no external access other than email needed
>>> then your use of a hardware firewall is workable.
>>>
>>> Roger
>>>
>>>> Hi All
>>>>
>>>> A server I have been asked to look at (& I'm no expert) but I have
>>>> checked the security logs & this server is getting hit upon about 100
>>>> times a minute. I believe these are failed access attempts to login to
>>>> the server so the server appears to be secure(ish).
>>>>
>>>> However on doing a nmap of the ip it showed that the following ports
>>>> were open, obviously I would like this server to be as secure as
>>>> possible so would the obvious answer be to put a hardware firewall or
>>>> could someone recommend the best course of action, any help or
>>>> information would be greatly appreciated
>>>>
>>>> The sever is running SBS2003, no websites running from it, it is just
>>>> used as a storage device, to send emails etc.
>>>>
>>>> |___ 21 File Transfer Protocol [Control]
>>>> |___ 25 Simple Mail Transfer
>>>> |___ 42 WINS Host Name Server
>>>> |___ 80 World Wide Web HTTP
>>>> |___ 88 Kerberos
>>>> |___ 110 Post Office Protocol - Version 3
>>>> |___ 135 DCE endpoint resolution
>>>> |___ 139 NETBIOS Session Service
>>>> |___ 389 Lightweight Directory Access Protocol
>>>> |___ 443 https MCom
>>>> |___ 444 Simple Network Paging Protocol
>>>> |___ 445 Microsoft-DS
>>>> |___ 464 kpasswd
>>>> |___ 636 ssl-ldap
>>>> |___ 995 SSL based POP3
>>>> |___ 1027 ICQ?
>>>> |___ 1155 Network File Access
>>>> |___ 1723 pptp
>>>> |___ 2002 ?
>>>>
>>>>
>>>> Thanks in advance
>>>>
>>>> Franky
>>>>
>>>
>>>
>>
>>
>
>
| 
XML Sitemap