IP Filtering
Ben
Not a guru by any means here.
We have a restricted FTP site, meaning you have to have a login and
password to get in.
One particular site I notice has tried many times to get into our FTP
site. The IP is always the same.
What I need to know is, is there a way to add that IP to a listing so that
it can never connect using Proxy Server?
Thanks
Keith W. McCammon
--
Keith W. McCammon
"Ben" <ben_h...@hotmail.com> wrote in message
news:tv0ajrf...@corp.supernews.com...
Ben
"Keith W. McCammon" <k...@km.com> wrote in message
news:Ox5GWV7aBHA.2284@tkmsftngp05...
Keith W. McCammon
true packet-filtering firewall. It was not designed or intended to work as
a rule-matching system, which is pretty much what you need to start allowing
disallowing certain IP addresses on source and destination
If you have a router, which you probably do, it can almost certainly do this
for you. I would suggest looking into that if you're that concerned about
this clown rooting out your system. Better still, I would get a firewall
and harden your system.
--
Keith W. McCammon
"Ben" <ben_h...@hotmail.com> wrote in message
news:tv0ccnj...@corp.supernews.com...
ZZZT
application-gateway (Proxy). One can certainly disallow IP address from
entering. All one would need to do is to disallow whatever FTP site they
were worried about in the Properties of the FTP Site in MMC.
#1 Right-Click FTP Site
#2 Select "Properties"
#3 Click "Directory Security"
#4 Click the "Granted Access" radio button
#5 Click "Add", will which explicitly deny connections from a specific
computer.
Proxy 2.0 is very much a packet-filter Firewall. One would simply need to
click the Security button of either the Socks, Web or Winsock Proxy service
and se the choices given to you re: enabling packet filtering to win that
argument. And, Packet Filtering = Firewall. This product could certainly
have been called Microsoft Firewall 2.0.
Keith W. McCammon <k...@km.com> wrote in message
news:#3XDMv7aBHA.1856@tkmsftngp05...
Ben
Were running on Proxy 2.0 now, but I do have ISA server that will probably
go online about Xmas time.
Also, my router, (Cisco 675) for the DSL connection... Im not sure how to
filter anything from that end.
"ZZZT" <ZZZT@no_spam.hotmail.com> wrote in message
news:Owsfv77aBHA.2328@tkmsftngp05...
phillip_windell
2. Select Directory Security
3. Select "Granted Access" (it should already be)
4. Click "Add"
5. Add the forbidden IP#s in the Exception box below.
--
Phillip Windell (MCP)
Network Administrator
WAND - TV
pwin...@wandtv.com
www.wandtv.com
"Ben" <ben_h...@hotmail.com> wrote in message
news:tv0ajrf...@corp.supernews.com...
Ben
Haha time to get that Unix box up and running <lol>
<Phillip Windell> wrote in message news:#PgPwQ8aBHA.1912@tkmsftngp03...
phillip_windell
a certain amount of firewall capability built in to the same product. It
does not have true Application filtering ability even though it may give
that impression. It still filters by port# and protocol (TCP or UDP). It
does not do content filtering because it only looks at the packet itself and
not the internal content of the packet.
Application Filtering is much more complex and ISA server is more apt to fit
that role in terms of any of MS's "proxy" products.
"ZZZT" <ZZZT@no_spam.hotmail.com> wrote in message
news:Owsfv77aBHA.2328@tkmsftngp05...
phillip_windell
> Thanks everyone!
>
> Haha time to get that Unix box up and running <lol>
Doing what you have asked in Proxy2 is extremely easy. If you have trouble
with that, I doubt you will have a prayer in getting a Unix baseb proxy
running.