Knowledgebase
Knowledgebase: Security
Firewall your Server
Posted by - NA - on 19 September 2006 04:15 AM

Windows Firewall

The first thing you should do with your new VPS is to enable the Windows Firewall. Do this by logging on to your VPS through remote desktop and then select

Start > Control Panel > Windows Firewall.

Once this service is started add the following ports/applications to your firewall exceptions as required. (Start > Control Panel > Windows Firewall > Exceptions > Add Program or Port)

Check "Remote Desktop" option [Remote Desktop]

Add Port > Name = DNS UDP | Port =53 | UDP [Domain Name Server UDP]
Add Port > Name = DNS TCP | Port =53 | TCP [Domain Name Server TCP]
Add Port > Name = SMTP | Port =25 | TCP [Mail Server]
Add Port > Name = POP3 | Port =110 | TCP [POP 3 Mail collection service]
Add Port > Name = HTTP | Port =80 | TCP [Web Server]
Add Port > Name = HTTPS | Port =443 | TCP [Secure Web Server]

Add Program > Browse > C:\WINDOWS\system32\inetsrv\inetinfo.exe [FTP Service]

You will probably also want your server to respond to network ICMP packets (ping) so ensure this is enabled by going: Start > Control Panel > Windows Firewall > Advanced > ICMP Settings > Enable options

Firewalling MSSQL and MySQL

You may wish to enable remote access to MS SQL server or MySQL server. We recommend that this service be firewalled and only your IP address allowed remote access to this port.

You can do this by the following method:

Start > Control Panel > Windows Firewall > Exceptions >

Add Port > Name = MSSQL | Port = 1443 | TCP > Change Scope > Custom list > Your IP address as listed at http://www.mycp.co.nz

Add Port > Name = MySQL | Port = 3306| TCP > Change Scope > Custom list > Your IP address as listed at http://www.mycp.co.nz

 

(255 vote(s))
Helpful
Not helpful