Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
879
Views
0
Helpful
2
Replies

Port Scan Prevention

alvincdc
Level 1
Level 1

‎02-23-2004 07:29 PM - edited ‎03-09-2019 06:31 AM

We have a problem containing port scans originating from our dial-up pool clients...Can someone advise us on what measures to take. We plan to block the whole IP block but don't know which ports to block so as not to affect the service.

Labels:
0 Helpful
2 Replies 2

mostiguy
Level 6
Level 6

‎02-24-2004 08:44 AM

there is no good method - any decent port scanner has variety of options to tweak the source port as well as its randomness for port scanning. Could you insert an IDS into the mix - maybe it would be able to correlate the behaviour, and you could craft an auto shut down solution to kill their ip's connectivity.

Are you an ISP, or are you providing a limited subset of functionality?

0 Helpful

jmia
Level 7
Level 7

‎02-24-2004 09:34 AM

Hi,

You could also apply command - icmp deny any outside, this will make your inside network invisible to the outside scanners, go to http://www.grc.com and run 'shields up' before applying the above command and see if there are any open ports and then apply the above command and run 'shields up' and check the results.

Hope this helps a little.

Jay

0 Helpful
Customers Also Viewed These Support Documents