General discussion

  • Creator
    Topic
  • #2189108

    detect unused ports and block

    Locked

    by kkelly_79 ·

    hi, can anyone run me how to detect unused ports and how to block them them by default?

All Comments

  • Author
    Replies
    • #3053483

      Reply To: detect unused ports and block

      by toivo talikka ·

      In reply to detect unused ports and block

      I assume by ‘unused’ you mean ‘open’ – even though that means the port is in use, it has been opened by an application.

      It would help to know if you need the information for a firewall, a server or a workstation. In a firewall as a general rule you block everything and then allow certain ports based on the need to have services like web server (HTTP) or email (SMTP) available.

      You can find out about open ports in Windows by typing in the following command:

      netstat -an

      If you want to know which ports are open to the general public in your external IP address, meaning your firewall, you have to do a scan from outside your LAN, with the approval of your network administrator, and, depending on your service agreement, with the knowldege of your ISP.

      One such service is provided by Gibson Research Corporation, at http://grc.com. The free probe is under the heading Shields Up!! You can scan the common ports or all service ports and you get a colour coded report.

      If you want to scan the servers in your LAN, there are a number of free products available from reputable security companies. A word of warning: you have to be careful what you do.

      You can also check the open ports by running an application like TCPView from Sysinternals ( http://www.sysinternals.com/Utilities/TcpView.html ) on the workstation or the server itself.

      If you find an open port, you can check the purpose of it, if it is a well-known port, from a number of sources like http://www.iana.org/assignments/port-numbers or http://en.wikipedia.org/wiki/List_of_well-known_ports_(computing)

      If you want to know which process owns which port in Windows, you can use the TDIMon utility from Sysinternals, http://www.sysinternals.com/Utilities/TdiMon.html.

    • #3045298

      Reply To: detect unused ports and block

      by kkelly_79 ·

      In reply to detect unused ports and block

      This question was closed by the author

Viewing 1 reply thread