what to you want to achieve? Keep in mind that ISA server is designed along the concept that everything is denied unless expressely allowed.
ISA's outbound access control is based on protocol and site&content rules. Basically a client is granted/denied access to a service with a protocol rule and to a destination with a site&content rule. The inbound access control is based on web and server publishing rules.
my network was hit by sql slammer therefore Microsoft & Trend Micro recommends me to block port 1434 that's why i want to block port 1434. Currently i set my ISA to allow all IP traffic.
what do you exactly mean with "Currently i set my ISA to allow all IP traffic"? Which protocol rules and IP packet filters have you in place? Do you publish an SQL server?
BTW --- if you have an all open IP packet filter, remove it immediately! You are in big danger.
I'm not publishing my Sql server on the Internet but I allowed all IP traffic in Protocol rules in my ISA server. My network has ISA server, SQL server, Exchange server. There are so many complaints of network slow down bcuzz of Slammer, plz guide wht do i do.
if you don't have an all open IP packet filter and don't publish an SQL server, then ISA should already block inbound access to the TCP port 1434. You can verify it by looking into the IP packet filter log. If you don't find them, try a 'telnet external_IP_address 1434' from an external station. The connection should *not* succeed and you should find the blocked request in the IP packet filter log.
|
My Subscription |
My Forums |
Address Book |
Member List |
Search |
FAQ |
Ticket List |
Log Out
Printable Version
All Forums >> [ISA Server 2000 Firewall] >> General >> Blocking ports 
Blocking ports - 
New Messages
No New Messages
Hot Topic w/ New Messages
Hot Topic w/o New Messages
Locked w/ New Messages
Locked w/o New Messages
Post New Thread