How do I block my network to go out some specific port?
Mitesh Patel
I want to prevent some of domain user to go out to some
specifi ports such as Kaza,napstor etc. for example i
want to block port 5000 so no one from my network can not
connect to these port.
Thanks
Phillip Windell
actively *give* permission for things to works.
--
Phillip Windell
pwin...@wandtv.com
WAND-TV (ABC Affiliate)
www.wandtv.com
"Mitesh Patel" <mpa...@rjcomputers.com> wrote in message
news:10fc101c21956$8d386380$9be62ecf@tkmsftngxa03...
ObiWan
> Everything is blocked by default when Access Control is enabled.
> You have to actively *give* permission for things to works.
Right Phil *but* if access control is enabled and someone messed
up the settings i.e. adding everyone to the "unlimited access" list
then AC won't work; better starting from "scratch" by removing
all the accounts from the AC and adding them back *only* for
the needed protocols this will give you fine-grain control about
the allowed ports and about *who* is allowed to use them; btw
the best will be using both packet filtering and access control
to grant the maximum possible security
Phillip Windell
first and give the gory details along with other possible scenarios in
followup messages if it is required. I assume he isn't aware of Proxy2's
"Deny All then Allow" form of security since he asked the question as he
did. If it turns out he's knows that, then we can look deeper.
I used to give all the details of all the possible scenarios in the first
post. It made for huge posts and I'd spend all day in front of this thing.
But since I am gradually fullfilling my dream of growing up to be a
"grouchy-tired-old-fart-on-the-porch", I'm trying to cut back on the typing.
:)
Later...
--
Phillip Windell
pwin...@wandtv.com
WAND-TV (ABC Affiliate)
www.wandtv.com
"ObiWan" <anzenN...@gmx.net> wrote in message
news:##Yza45GCHA.2212@tkmsftngp12...