• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Firewall Security ?

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2004 Firewall] >> Access Policies >> Firewall Security ? Page: [1]
Login
Message << Older Topic   Newer Topic >>
Firewall Security ? - 9.Dec.2004 1:08:00 PM   
AdnanRafik

 

Posts: 63
Joined: 13.Feb.2003
From: UAE
Status: offline
I'm running ISA2004 as an Edge Firewall.

I'm monitoring the firewall and observing many Intrusion attempts everyday. I'm not sure whether ISA2004 blocks the intrusion or not.

2nd I'd like to know about some of the policies.

When I scanned ISA2004 externally by using NAMP I found many ports opened there like

(The 1634 ports scanned but not shown below are in state: closed)
PORT STATE SERVICE
21/tcp filtered ftp
22/tcp filtered ssh
23/tcp filtered telnet
25/tcp open smtp
53/tcp open domain
80/tcp open http
88/tcp open kerberos-sec
110/tcp open pop3
119/tcp filtered nntp
135/tcp open msrpc
389/tcp open ldap
445/tcp open microsoft-ds
464/tcp open kpasswd5
513/tcp filtered login
563/tcp filtered snews
593/tcp open http-rpc-epmap
636/tcp open ldapssl
1025/tcp open NFS-or-IIS
1026/tcp open LSA-or-nterm
1433/tcp filtered ms-sql-s
2020/tcp open xinupageserver
3268/tcp open globalcatLDAP
3269/tcp open globalcatLDAPssl
3389/tcp open ms-term-serv
6667/tcp filtered irc

I juz want to give Internet access to my clients that's it. I've tried to allow only

HTTP, HTTPS, POP3, SMTP, MS FIrewall Control, both RPC but internet access does not work.

So what should be the appropriate policy.
Post #: 1
RE: Firewall Security ? - 11.Dec.2004 3:14:00 PM   
tshinder

 

Posts: 50013
Joined: 10.Jan.2001
From: Texas
Status: offline
Hi Adnan,

Sounds like your firewall is misconfigured. No ports are open on the ISA firewall except those you open and those opened by system policy. And none of those you list here are open.

HTH,
Tom

(in reply to AdnanRafik)
Post #: 2

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2004 Firewall] >> Access Policies >> Firewall Security ? Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts