Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] IIS 4.0 and firewall-1

To: "Tony Wong" <[email protected]>, <[email protected]>
Subject: RE: [FW1] IIS 4.0 and firewall-1
From: "Lars Troen" <[email protected]>
Date: Wed, 6 Jun 2001 09:29:34 +0200
Importance: Normal
In-reply-to: <[email protected]>
Sender: [email protected]

Tony,

I'm not sure why you're allowing high ports here but.... If you go through this checklist: http://www.microsoft.com/technet/security/iischk.asp

Then your servers will be much more secure. But these servers should still be seperated from your internal resources (on a dmz). As long as you're allowing external sources to one of your servers, a breakin still could be possible (you never know).

Lars

-----Original Message-----
From: [email protected] [mailto:[email protected]]On Behalf Of Tony Wong
Sent: Monday, June 04, 2001 20:58
To: [email protected]
Subject: [FW1] IIS 4.0 and firewall-1

We have a couple of IIS4.0 servers Static natted behind Firewall-1. The rule is:

ANY WEB1,2,3 HTTP/HTTPS/TCP HIGH PORTS ACCEPT

The internet can access these serversa

What can i do to secure these servers. I am already on the latest service pack and do frequent security updates on these servers.

Please advise.

Thanks

References:
- [FW1] IIS 4.0 and firewall-1
  - From: Tony Wong <[email protected]>

Prev by Date: RE: [FW1] Security breach
Next by Date: RE: [FW1] Broadcast Garbage
Previous by thread: [FW1] IIS 4.0 and firewall-1
Next by thread: [FW1] Info about NOKIA IPSO
Index(es):
- Date
- Thread