General discussion

Locked

detect unused ports and block

By kkelly_79 ·
hi, can anyone run me how to detect unused ports and how to block them them by default?

This conversation is currently closed to new comments.

3 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

by Toivo Talikka In reply to detect unused ports and b ...

I assume by 'unused' you mean 'open' - even though that means the port is in use, it has been opened by an application.

It would help to know if you need the information for a firewall, a server or a workstation. In a firewall as a general rule you block everything and then allow certain ports based on the need to have services like web server (HTTP) or email (SMTP) available.

You can find out about open ports in Windows by typing in the following command:

netstat -an

If you want to know which ports are open to the general public in your external IP address, meaning your firewall, you have to do a scan from outside your LAN, with the approval of your network administrator, and, depending on your service agreement, with the knowldege of your ISP.

One such service is provided by Gibson Research Corporation, at http://grc.com. The free probe is under the heading Shields Up!! You can scan the common ports or all service ports and you get a colour coded report.

If you want to scan the servers in your LAN, there are a number of free products available from reputable security companies. A word of warning: you have to be careful what you do.

You can also check the open ports by running an application like TCPView from Sysinternals ( http://www.sysinternals.com/Utilities/TcpView.html ) on the workstation or the server itself.

If you find an open port, you can check the purpose of it, if it is a well-known port, from a number of sources like http://www.iana.org/assignments/port-numbers or http://en.wikipedia.org/wiki/List_of_well-known_ports_(computing)

If you want to know which process owns which port in Windows, you can use the TDIMon utility from Sysinternals, http://www.sysinternals.com/Utilities/TdiMon.html.

Collapse -

by kkelly_79 In reply to

Poster rated this answer.

Collapse -

by kkelly_79 In reply to detect unused ports and b ...

This question was closed by the author

Back to Security Forum
3 total posts (Page 1 of 1)  

Related Discussions

Related Forums