firewall - How to evaluate whether a port should be closed or open? -

-

so meet pci compliance, need have justification every port that's open on windows server 2012 r2. looked @ firewall, , there's ton of rules. started going through each rule , deciding if should closed or not, i'm looking more efficient process.

my goals close ports without disrupting live site in way, , ones can't close, have clear reasoning behind why i've left open.

my first thought check ports being listened using: netstat -aon

but i'm not positive comprehensive @ ports being used - example, there processes use ports sometime , aren't listening on ports other times? ports used scheduled activities, listed here?

the way see it, need figure out firewall rules below not being used server, , able track down service using each rule i've left in rules.

here current active rules. recommendations on process doing correctly?

  • nsclient++ monitoring agent
  • prtg_network_monitor_admin_tool
  • prtg_network_monitor_probe
  • prtg_network_monitor_server
  • prtg_network_monitor_server
  • visual studio 2013 remote debugger discovery (devenv.exe)
  • core networking - destination unreachable (icmpv6-in)
  • core networking - destination unreachable fragmentation needed (icmpv4-in)
  • core networking - dynamic host configuration protocol (dhcp-in)
  • core networking - dynamic host configuration protocol ipv6(dhcpv6-in)
  • core networking - internet group management protocol (igmp-in)
  • core networking - iphttps (tcp-in)
  • core networking - ipv6 (ipv6-in)
  • core networking - multicast listener done (icmpv6-in)
  • core networking - multicast listener query (icmpv6-in)
  • core networking - multicast listener report (icmpv6-in)
  • core networking - multicast listener report v2 (icmpv6-in)
  • core networking - neighbor discovery advertisement (icmpv6-in)
  • core networking - neighbor discovery solicitation (icmpv6-in)
  • core networking - packet big (icmpv6-in)
  • core networking - parameter problem (icmpv6-in)
  • core networking - router advertisement (icmpv6-in)
  • core networking - router solicitation (icmpv6-in)
  • core networking - teredo (icmpv6-in)
  • core networking - teredo (udp-in)
  • core networking - time exceeded (icmpv6-in)
  • file , printer sharing (echo request - icmpv4-in)
  • file , printer sharing (echo request - icmpv6-in)
  • file , printer sharing (llmnr-udp-in)
  • file , printer sharing (nb-datagram-in)
  • file , printer sharing (nb-name-in)
  • file , printer sharing (nb-session-in)
  • file , printer sharing (smb-in)
  • file , printer sharing (spooler service - rpc)
  • file , printer sharing (spooler service - rpc-epmap)
  • file server remote management (dcom-in)
  • file server remote management (smb-in)
  • file server remote management (wmi-in)
  • google chrome (mdns-in)
  • remote desktop - shadow (tcp-in)
  • remote desktop - user mode (tcp-in)
  • remote desktop - user mode (udp-in)
  • world wide web services (https traffic-in)
  • windows communication foundation net.tcp listener adapter (tcp-in)
  • windows remote management (http-in)
  • world wide web services (http traffic-in)


Comments

Post a Comment

Popular posts from this blog

mysql - Dreamhost PyCharm Django Python 3 Launching a Site -

-
i'm new python/django , created simple django website using pycharm. site works fine running on computer, i'm lost when comes taking site onto host (dreamhost). i'm able upload files correct directories fine, , believe made correct changes database on mysql. i'm not sure go there though. right now, page shows files rather site. direction appreciated. much! you should not run django application using python manage.py runserver on production. how run application on django depends on server (apache, nginx) want use for apache - https://docs.djangoproject.com/en/1.10/howto/deployment/wsgi/modwsgi/ for nginx - https://www.digitalocean.com/community/tutorials/how-to-serve-django-applications-with-uwsgi-and-nginx-on-ubuntu-14-04 the mysql database should, of course, exist , have correct credentials. or, if choose use sqlite, file should accessible, readable , writable www-user (may different depending on linux distributive)
Read more

java - Sending SMS with SMSLib and Web Services -

-
i have made rest web service send smss using hsdpa usb modem. using smslib in java send smss. every time web service invoked, create gateway start service, send message, stop service , remove gateway. takes 20 seconds each message. found starting service takes lot of time. part of code use send smss service.getinstance().addgateway(gateway); service.getinstance().startservice(); outboundmessage msg = new outboundmessage(phonenumber, message); if (service.getinstance().sendmessage(msg)) { result = "message sent successfully!!"; } else { result = "could not send message."; } service.getinstance().stopservice(); service.getinstance().removegateway(gateway);//remove gateway is there way can start service once if not started , use send message when ever web service invoked? why dont group messages , send in 1 go? service.getinstance().sendmessages(messa...
Read more

java - How to resolve The method toString() in the type Object is not applicable for the arguments (InputStream) -

-
i'm trying read json file local machine. @path("/") public class jsonparsing { file f = new file("file.json"); if (f.exists()){ inputstream = new fileinputstream("file.json"); string jsontxt = ioutils.tostring(is); system.out.println(jsontxt); jsonobject json = new jsonobject(jsontxt); string = json.getstring("1000"); system.out.println(a); } } but i'm getting error in tostring() method. possible read .txt file containing json object local machine? if possible, how done? firstly: whenever ask question- add imports well. secondly: yes possible read .txt file containing json object. steps: 1. add maven dependency in pom.xml - <dependency> <groupid>com.googlecode.json-simple</groupid> <artifactid>json-simple</artifactid> <version>1.1.1</version> </dependency> or add jar of dependency. 2.import...
Read more