Windows Firewall and Blocking

[cmdbash]

Hi all,

 

As per policy's go, would one GSP typically block every port other then the ones being used for the actual game servers, TCAdmin, ftp, and other critical needs?

 

I ask because I really want to do my best at locking down our firewall, and I'm trying to find the most effective policy I can get.

[icekohl]

YES! Least I would.

[Jack]

I have blocked everything, pinging, etc. Then with that only open the ports on a remote IP scope, rather than TCA opening the ports I use custom scripts to createand then delete the rules so I know exactly what's going on with the firewall.

[Monk]

I would not block icmp, that breaks PMTU.

[icekohl]

Don't make them google shiz monk.

[cmdbash]

Don't make them google shiz monk.

 

I'm okay with Googlein Shiz, gives me a chance to learn on my own. I also dont mind direct information lol.

[cmdbash]

Anyone have a recommended list of Ports to block?

[Jack]

Anyone have a recommended list of Ports to block?

 

Block everything and then open what you need

 

:confused:

 

isn't that just logic?

[Admin-Nation-Servers]

All ports should be blocked for TCP/UDP transport protocols, if they are not needed for game server use or administration.

 

All ports that must be open for administration (EX: RDC) should be limited to certain IP addresses for incoming connections.

 

I also recommend disabling the default administrator account and using a complex username and password for access/TCAdmin use.

 

These are just basic recommendations. You can use McAfee's PCI compliance tool to test for known vulnerabilities.