|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Rich Wilson (wk633
YAHOO.COM)Date: Wed Apr 04 2001 - 19:17:59 CDT
I'm trying to add Win2K port filtering (not via IPSec) to a Win2K IIS Server,
and it breaks dns as a client. I've allowed both 53 UDP and TCP.
Based on Philip Cox's 'Hardening Windows 2000' paper
(http://www.systemexperts.com/tutors/HardenW2K101.pdf) I don't think I should
even have to explicitly open port 53 to use dns as a client. In any case, with
port filtering on, and 53 (tcp and udp) open, dns times out. With port
filtering off, dns works fine.
It is a dual homed box, with the dns server on the 'outside', and the port
filtering applied only to the 'external' interface.
Any ideas?
=====
: __o
: -\<,
: 0/ 0
__________________________________________________
Do You Yahoo!?
Get email at your own domain with Yahoo! Mail.
http://personal.mail.yahoo.com/
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]