6000 port sealing method:
WIN2000 enters the DOS Status, knocks on netstat-an, and checks the port opened on your server. In fact, the private server only needs to open 7000.7100.7200 to the outside, so you can close all other useless ports, in this way, the server will be a little safer. After finding many ports, use the IP Security Policy to close unnecessary ports. The specific operations are as follows,
With its security policy, it can completely prevent intruders from attacking. You can go to "Administrative Tools> Local Security Policy", right-click "IP Security Policy", select "create IP Security Policy", and click [next]. Enter the name of the Security Policy, click [next], and then you will create a security policy:
Next, you need to right-click "IP Security Policy" to go to manage IP filters and filters. In the manage IP filters list, you can add ports to be blocked, here, we use the case of Disabling ICMP and 139 ports.
If ICMP is disabled, hackers cannot scan your machine or Ping your machine without the force scan function. To Disable ICMP, click [add], enter "Disable ICMP" in the name, click [add] on the right, and then click [next]. Select "any IP Address" from the source address and click [next]. Select "my IP Address" from the target address and click [next]. Select "ICMP" in the protocol and click [next]. Return to the "Close ICMP attribute" window to close ICMP.
Next we will set to disable 139. Also, click "add" in the management IP Filter list and set the name to "Disable 139". Click "add" on the right and click [next]. Select "any IP Address" from the source address and click [next]. Select "my IP Address" from the target address and click [next]. Select "TCP" in the protocol and click [next]. In the set IP protocol port, select any port to this port, enter 139 in this port, and click [next]. That is, close port 139. Other ports are also set.
Next, go to the settings management filter operation, click "add", click [next], enter "reject" in the name, and click [next]. Select "Block" and click [next].
Close this property page, right-click the newly created IP Security Policy "security", and open the property page. Select "add" in the rule and click [next]. Select "this rule does not specify a tunnel" and click [next]. Select "all network connections" in the select network type and click [next]. Select "Disable ICMP" in the IP Filter list and click [next]. In the filter operation, select "deny" and click [next]. In this way, you can add the "Disable ICMP" filter to the IP Security Policy named "security. In the same way, you can add other filters such as "Disable 139.
The last thing to do is assign this policy. It takes effect only after it is assigned. Right-click "security", select "all tasks" from the menu, and select "Assign ". The IP Security Settings end here. You can set the corresponding policies based on your own situation.
You can also disable the ports 5500,5100, 5000,16300, 16301,16302, 6000,5600, 4900,10000 to prevent players from copying equipment.