The Planet Forums > Free firewall for Win 2k3

The Planet Forums > Security > Firewalls

Hierro

Mar 7 2006, 05:33 PM

Hi, i see some strange bandwidth usage on my servers and I have found some IRC-Hack server on it. Removed them, the bandwidth come back to normal range but some times i still get some peak.
I want to install a firewall on my servers that are running the following servers program : mysql, ftp, iis, mail, remote desktop.
Are there some free firewall?

eddy2099

Mar 7 2006, 05:43 PM

There is no reason not to use the built-in Firewall and IPSecs. If you can, install the Windows 2003 Service Pack 1 then install and run the Security Configuration Wizard and that should set you up nice and secure. It is great and easy to use. And like you would say, the best part is that it is free

nForcer

Mar 7 2006, 05:57 PM

Just make sure you don't lock yourself out of RDP ports!

Hierro

Mar 7 2006, 06:04 PM

QUOTE (eddy2099)

I have the SP1 installed, where I can find the Security Configuration Wizard ? In control panel I can see only the "Windows Firewall" Icon...

Hierro

Mar 7 2006, 06:12 PM

I have added some port to the exception page of the firewall (21,25,80,110), I think it's ok for FTP,Mail and Web server, right ?
What is IPSecs? How I configure it?

eddy2099

Mar 7 2006, 07:22 PM

The Security Configuration Wizard is not automatically installed, You have to go to the Add/Remove Programs and choose the Add/Remove Windows Components, it is somewhere in there.

The beauty about the Security Configuration Wizard is that it will do an audit of your system and then shutoff those unused services, configure your firewall and IPSecs for you. You don't need to do anything beyond that.

After that, go to Orbit and order a free Vulnerability Scanning of your server. Also make sure that you install all the latest patches.

Hierro

Mar 8 2006, 05:20 AM

Ok, installed the security configuration wizard and launched... I have made a first selection of items and services but there are a lot I don't know if I have to block or allow them...
There is a guide for the services or port somewhere ?
Can you give me a list of services and port to allow ? (i.e. smb, ntp etc...)

Thanks

eddy2099

Mar 8 2006, 06:15 AM

Use whatever they recommend you first then do a Vulnerability Scanning. The default would basically allow all the programs port to be running and close everything else.

Tweek

Mar 15 2006, 02:41 PM

How about a more advanced firewall?

I like iptables / ipfilter for linux and the BSD's

I specifically want to block certain IP addresses/networks and also have it block based on continued failed login attempts.

ramprage

Jul 5 2006, 10:08 PM

The comodo firewall is really good, using it on all my home systems A+

http://www.personalfirewall.comodo.com/

Free

TheUniverses

Jul 5 2006, 10:42 PM

QUOTE (ramprage)

The comodo firewall is really good, using it on all my home systems A+

http://www.personalfirewall.comodo.com/

Free

Note - Compatible with Windows XP SP2 and Windows 2000 systems only.

For my home PCs, I use SKPF.
Kerio Server Firewall is pretty good, but not free.

claudioszykman

Nov 5 2006, 08:12 AM

you can use SP2 windows firewall by the time you install it is configured in off mode and it adds the Remote Desktop Port so you will not be locked out of your box, then you can manage ipsec scripts to auto-ban brute force attacks

search here for free windows firewall i placed some scripts

regards

claudio

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.