How to close the Port-security settings

Source: Internet
Author: User
Tags ftp connection
Each service corresponds to the corresponding port, such as the well-known WWW service port is 80,smtp is 25,ftp is the 21,win2000 installation of the default are these services open. It is really not necessary for individual users to turn off the port, which is to turn off useless services. Configured in services in Administrative tools in Control Panel.

1, close 7.9 and so on port: close Simpletcp/ipservice, support the following TCP/IP services: Charactergenerator,daytime,discard,echo, as well as quoteoftheday.

2, close 80: Turn off WWW service. Displays the name "Worldwidewebpublishingservice" in Services, which provides Web connectivity and administration through the snap-in of Internet Information Services.

3. Turn off the 25 port: Turn off the Simplemailtransportprotocol (SMTP) service, which provides the ability to send e-mail across the network.

4, turn off 21 ports: Close Ftppublishingservice, it provides services through the Internet Information Services snap-in provides FTP connection and management.

5. Turn off the 23 port: Turn off the Telnet service, which allows remote users to log on to the system and run the console program using the command line.

6. It is also important to shut down the server service, which provides RPC support, file, print, and named pipe sharing. Turn it off. Win2K default sharing, such as ipc$, C $, admin$, and so on, this service shutdown does not affect your total operation.

7, another is 139 port, 139 port is the Netbiossession port, used for file and print sharing, note that the UNIX machine running Samba is also open 139 ports, the same function. Streamer 2000 used to determine the other host type is not very accurate, it is estimated that the 139-port open both considered NT machine, now good. Turn off the 139-port listening method is to select the Internet Protocol (TCP/IP) attribute in local Area Connection in network and dial-up connections, and enter the Advanced TCP/IP settings wins setting, which has a "Disable TCP/IP NetBIOS" and closes 139 ports on a tick. For individual users, it can be set to "disabled" in each service property setting to prevent the next restart of the service from restarting and the port opening.

Each service corresponds to the corresponding port, such as the well-known WWW service port is 80,smtp is 25,ftp is the 21,win2000 installation of the default are these services open. It is really not necessary for individual users to turn off the port, which is to turn off useless services.

Configured in services in Administrative tools in Control Panel.

1, close 7.9 and so on port: close Simpletcp/ipservice, support the following TCP/IP services: Charactergenerator,daytime,discard,echo, as well as quoteoftheday.

2, close 80: Turn off WWW service. Displays the name "Worldwidewebpublishingservice" in Services, which provides Web connectivity and administration through the snap-in of Internet Information Services.

3. Turn off the 25 port: Turn off the Simplemailtransportprotocol (SMTP) service, which provides the ability to send e-mail across the network.

4, turn off 21 ports: Close Ftppublishingservice, it provides services through the Internet Information Services snap-in provides FTP connection and management.

5. Turn off the 23 port: Turn off the Telnet service, which allows remote users to log on to the system and run the console program using the command line.

6. It is also important to shut down the server service, which provides RPC support, file, print, and named pipe sharing. Turn it off. Win2K default sharing, such as ipc$, C $, admin$, and so on, this service shutdown does not affect your total operation.

7, another is 139 port, 139 port is the Netbiossession port, used for file and print sharing, note that the UNIX machine running Samba is also open 139 ports, the same function. Streamer 2000 used to determine the other host type is not very accurate, it is estimated that the 139-port open both considered NT machine, now good.

Turn off the 139-port listening method is to select the Internet Protocol (TCP/IP) attribute in local Area Connection in network and dial-up connections, and enter the Advanced TCP/IP settings wins setting, which has a "Disable TCP/IP NetBIOS" and closes 139 ports on a tick.

For individual users, it can be set to "disabled" in each service property setting to prevent the next restart of the service from restarting and the port opening.

We generally use a number of powerful anti-black software and firewalls to ensure that our system security, but some users do not have the above conditions. What do we do? Here's an easy way to help prevent illegal intrusions by restricting ports.

The way of illegal intrusion

In short, the way of illegal intrusion can be roughly divided into 4 kinds:

1, scan the port, through the known system bugs into the host.

2, planting Trojans, using Trojans to open the back door into the mainframe.

3, the use of data overflow means, forcing the host to provide backdoor access to the mainframe.

4, the use of some software design loopholes, direct or indirect control of the host.

The main ways of trespassing are the first two, especially the use of some popular hacking tools, the first way to attack the host is the most and most common, and the latter two ways, only a number of sophisticated hackers to use, the spread is not widespread, and as long as the two problems appear, software services providers will soon provide patches and repair the system in time.

Therefore, if the first two types of illegal intrusion can be limited, it can effectively prevent the use of hacker tools of illegal intrusion. And the first two kinds of illegal intrusion methods have one thing in common, is through the port into the host.

A port is like a few doors in a house (server), and different doors lead to different rooms (servers provide different services). Our common FTP default port is 21, while the General WWW Web page default port is 80. But some sloppy network administrators often open some easily intrusive port services, such as 139, and a number of Trojan programs, such as glaciers, BO, wide and so on are automatically open up a you do not detect the port. So, as long as we have not used the port all blocked up, not to eliminate these two illegal invasion?

Ways to Restrict ports

For individual users, you can limit all ports because you do not have to provide any service to your machine at all, and for servers that provide network services externally, we need to open the ports that must be used (such as WWW port 80, FTP port 21, mail Service port 25, 110, and so on). The other ports are all closed.

Here, for users with Windows2000 or Windows XP, there is no need to install any other software, you can use the TCP/IP filtering feature to restrict the server's ports. The specific settings are as follows:

1, right click on "Network Places", select "Properties", and then double-click "Local Area Connection" (if the dial-up Internet users, select the "My Connection" icon), pop-up "Local Connection Status" dialog box.

2, click the [Properties] button, pop-up "Local Connection Properties", select "This connection use the following items" in the Internet Protocol (TCP/IP), and then click the Properties button.

3, in the pop-up Internet Protocol (TCP/IP) dialog box, click the [Advanced] button. In the Advanced TCP/IP settings that pops up, select the Options tab, select TCP/IP filtering, and then tap the Properties button.

4. In the pop-up TCP/IP Filter dialog box, select the "Enable TCP/IP Filtering" checkbox, and then "Allow only" on the left "TCP port" (see the attached figure).

This allows you to add or remove your TCP or UDP or IP ports on your own.

Added or removed, your server is protected after restarting the machine.

If you are only browsing the Internet, you may not add any ports. But to use some network contact tools, such as OICQ, you have to open the "4000" port, the same way, if you find that a common network tool does not work, please know it in your host port, and then add the port in "TCP/IP Filtering."

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.