Re: Blocking ports 1024-1030 excessive?
Available news archives: comp.lang.tcl - comp.lang.python - comp.security.firewalls - sci.crypt - comp.lang.php - comp.lang.javascript
Google
 
Web news.hping.org


comp.security.firewalls archive

Re: Blocking ports 1024-1030 excessive?

From: Duane Arnold <NotMe@NotMe.com>
Date: Mon Dec 19 2005 - 03:34:09 CET



Dubious Dude wrote:


> I just blocked ports 1024-1030 as per http://grc.com/port_1030.htm.


> I was motivated by repeated requests to access that port (for some


> reason, many such request are coming from China).


> 


> Is it excessive to block them all?  I use a laptop who's main


> connectivity is through dialup, though I sometimes hookup the


> ethernet connection to a campus LAN or a home network (a friend's


> router).



I am on dial-up and using a PFW and it's blocking those unsolicited 


inbound requests. So no I wouldn't waste my time setting additional 


rules as the PFW is knocking down that traffic. But if you want to feel 


comfortable setting the rules then you should do it. I also supplement 


the PFW solution with IPsec that's on the Win 2k and XP O/S(s) and it's 


knocking it all down and the PFW is not even logging the blocked traffic 


as it's not reaching it.



Duane :)


Received on Fri Dec 23 20:08:20 2005