Hi
I have read all the hardening docs proposed on this discussion group which i
found really helpful. I have so far upgraded all my servers etc with the
latest service packs and security updates but I would like to close all ports
but the required on say for instance my smpt server i closed everything but
dns ports and 25 but i could not resolve names where do you guys get the
information on what ports can be closed.

many thanks for any help you may be able to give me

ca

You need to open TCP/UDP 53 for your DNS queries..
Other than that depends on your services or requirements you may want to
open those ports as well...
http://www.portsdb.org this can be somwhat usefull...


"Carolann" <(E-Mail Removed)> wrote in message
news:31C090F0-00C6-4289-BA7F-(E-Mail Removed)...
> Hi
> I have read all the hardening docs proposed on this discussion group which
> i
> found really helpful. I have so far upgraded all my servers etc with the
> latest service packs and security updates but I would like to close all
> ports
> but the required on say for instance my smpt server i closed everything
> but
> dns ports and 25 but i could not resolve names where do you guys get the
> information on what ports can be closed.
>
> many thanks for any help you may be able to give me
>
> ca

There are more ports than just LDAP and DNS (TCP/UDP 53) to ensure that
Win 200x and Active Directory work.

For a start, check out:

http://support.microsoft.com/default...b;en-us;832017

Do let us know if it helps. Thanks.


"Carolann" wrote:

> Hi
> I have read all the hardening docs proposed on this discussion group which i
> found really helpful. I have so far upgraded all my servers etc with the
> latest service packs and security updates but I would like to close all ports
> but the required on say for instance my smpt server i closed everything but
> dns ports and 25 but i could not resolve names where do you guys get the
> information on what ports can be closed.
>
> many thanks for any help you may be able to give me
>
> ca