General discussion

Locked

HELP!!!! netsat -a results

By Klaatu_barada_nikto ·
I run netstat -a from a command prompt in NT and get a list of active/listening ports.
I've been told that for security, I should only have a minimum of "ports" open in TCP.

How do "turn of" i.e control these quote un-quote ports that are apparently active and working as displayed by netstat

This conversation is currently closed to new comments.

7 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

HELP!!!! netsat -a results

by rlardinois In reply to HELP!!!! netsat -a resul ...

You could stop services that you are not using. For example, if you had IIS or PWS loaded and were running FTP or web server they would have ports open (21 and 80). If you go in a stop the services, you should not see those ports listed in netstatanymore. If this is only a web server, you could stop the server service.

Collapse -

HELP!!!! netsat -a results

by Klaatu_barada_nikto In reply to HELP!!!! netsat -a resul ...

The question was auto-closed by TechRepublic

Collapse -

HELP!!!! netsat -a results

Hi!

Most ports and connections listed are initiated by you.

In C:\WINNT\SYSTEM32\DRIVERS\ETC\SERVICES

You'll find a list with a few standard applications and their ports.

If you haven't installed any server services that listen on ports like www, ftp, news, mail servers etc.

Or web folders you aren't in any big danger.

Just make sure you have latest Service Pack and things will go just fine.

/Hasse

Collapse -

HELP!!!! netsat -a results

by Klaatu_barada_nikto In reply to HELP!!!! netsat -a resul ...

The question was auto-closed by TechRepublic

Collapse -

HELP!!!! netsat -a results

by ioan2k In reply to HELP!!!! netsat -a resul ...

You need a minimum list of ports for security reasons.
Your ports may be :
80 - web service,
21 - ftp service
135,136,137,138,139 - for NT (sharing, RPC, IPC$ and so on)
A list of such ports is on \WINNT\System32\drivers\etc\services

To allow connection with only some ports you must go on
properties of Network Neighborhood and on
Protocols -> Tcp/IP-Protocol -> Properties -> Advanced -> Enable Security -> Configure.
Here you may set your list of TCP Ports, UDP ports and IP Protocols.

Pay attention to local admin of your NT WS, because it is possibile
to be unable to log on after this operation, but with a local admin account you may fix this problem allowing NT to use 135 to 139 TCP and UDP ports.

Collapse -

HELP!!!! netsat -a results

by Klaatu_barada_nikto In reply to HELP!!!! netsat -a resul ...

The question was auto-closed by TechRepublic

Collapse -

HELP!!!! netsat -a results

by Klaatu_barada_nikto In reply to HELP!!!! netsat -a resul ...

This question was auto closed due to inactivity

Back to Windows Forum
7 total posts (Page 1 of 1)  

Related Discussions

Related Forums