If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below. |
|
|
Thread Tools | Display Modes |
#1
|
|||
|
|||
Block outsiders from accessing port 80.
Hello all
I have installed IIS 5.1 and I want to block everybody that does not belong to my domain to access my web sites. Unfortunately the organization I am working for does not have a central firewall solution so I am almost completely exposed. I have installed a ll latest updates and I am using Symantec Antivirus Corporate Edition 8.1. To block everybody from outside I stopped Anonymous Access to my web sites (IIS default site properties-Directory Security- Clear check-box Anonymous access) and I checked only Integrated Windows authentication. I watch the IIS log everyday and I see foreign addresses trying to access my port 80 in bizarre ways e.g.: - 80 HEAD /MSADC/root.exe /c+dir+c:\ 401 5 194 130 0 HTTP/1.0 - 80 HEAD /_vti_bin/..%5c..%5c..%5c..%5c..%5c../winnt/system32/cmd.exe /c+dir+c:\ 401 - 80 SEARCH / ± ± ± ± (many or them) - 401 5 4644 67022 78 HTTP/1.1 I hope that as long as these requests get a 401 answer they are blocked. Still I am very worried about this and I don’t know how to stop this situation. I am quite new at this and my Internet Connection Firewall is not enabled because I access a lot of things on my file servers and I don’t want that to be stopped. Could somebody help me with this? Thank you all for your time. PS: could you please suggest links for reading about controlling ports on XP Pro |
Thread Tools | |
Display Modes | |
|
|