| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 36601 | 2003-08-14 05:20:00 | Kerio Firewall-Blocking Ports | Smurf (506) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 167661 | 2003-08-14 05:20:00 | Could some one give me guidance please on how toconfigure this firewall to block a specific port or ports? Thanks for your help Smurf |
Smurf (506) | ||
| 167662 | 2003-08-14 05:44:00 | Double click the icon in your task tray to open Kerio, go to File, Admin, Advanced, click on Add, type in a description (eg Port 135 TCP block), choose TCP for Protocol, in Port Type - list of ports and enter these numbers: 135,139,445,593,4444 Choose Deny and put a tick in the Log when this rule matches if you want that, then click OK then Apply. Do another entry for Port 135 UDP block and choose UDP for Protocol with these numbers: 69,135,137,138 |
Fire-and-Ice (3910) | ||
| 167663 | 2003-08-14 05:47:00 | Fire and Ice , thanks you for your quick response. Smurf | Smurf (506) | ||
| 167664 | 2003-08-14 05:53:00 | The basic procedure is like this: Right click on the Kerio icon in the system tray, left click on Administration, under the Firewall tab click Advanced. You then get a Firewall Configuration page, click Add button at the bottom to open a Filter Rule page. Suppose you want to block port 135. ( A good idea to do at the present time), the Description you could write in as Block Port 135, the Protocol set as Any (assumes you dont want anything in), Direction you could set as Both Directions, the Remote End Point set as Any address. Set Rule Valid as Always, and click the Deny radio button below, then click ok your way out. This will always deny any access in or out on port 135 by any protocol. I dont set alerts myself, but there is that option too if Kerio detects probings on port 135. Having done one rule you can find your way through setting other types of filter rule. Lets see how you go. Cheers |
Terry Porritt (14) | ||
| 167665 | 2003-08-14 05:54:00 | Already answered whilst typing that :) :) | Terry Porritt (14) | ||
| 167666 | 2003-08-14 06:02:00 | Having just installed Kerio, out of interest I went to Sheilds up & ran their test. With no alterations at all to Kerio, I achieved a perfect rating - all ports are blocked and basicly, my computer doesn't exist. Very impressive. http://www.grc.com From this, I would assume that no fiddling is needed - all I had to OK, was the proxy port that AddSubtract uses. Bye |
Peter H (220) | ||
| 167667 | 2003-08-14 06:02:00 | Thanks for your help too Terry..All the more the merrier :) | Smurf (506) | ||
| 167668 | 2003-08-14 10:58:00 | Its more stealthed ports than blocked I would guess and, if you use adsl with a NAT router then this also has an effect on how visible you are to outsiders. Cheers Murray P |
Murray P (44) | ||
| 167669 | 2003-08-14 11:47:00 | It would seem I'm the only person using the latest beta of Kerio? Comes with Kerio Administration Console 1.1.1, much more like a Windows 2000 generation service than the previous version, which still kept the looks of Tiny Personal Firewall. As far as I know, it's only available for Windows 2000/XP etc, as I have never received the beta update available notification under Windows 98. |
agent (30) | ||
| 167670 | 2003-08-14 11:50:00 | agent, I got the beta notification but haven't downloaded it yet. How's it going any issues? Cheers Murray P |
Murray P (44) | ||
| 1 2 | |||||