Re: VPN/PPOE/RWW Questions/Security

From: Paul (Paul_at_discussions.microsoft.com)
Date: 03/23/05 

Date: Wed, 23 Mar 2005 06:29:03 -0800

Thanks for the reply Susan.

I've opened ports 443, 444, 4125, 1723. The router has been set to not
respond to pings on the WAN side. The probes I've been seeing are coming from
different IP's and there are usually 10-15 entries back to back from each
unique IP that scans the port. I'm not seeing any traffic on the other ports.
I know that https is fairly common on the web but I'm just wondering if I am
overly at risk having it open for SBS.

"Susan Bradley, CPA aka Ebitz - SBS Rocks" wrote:

> The attitude for many is that Linksys' quality is going downhill.
>
> What ports do you have open on that router?
>
> And what kind of ping/traffic are you seeing? Ensure that you have
> strong passwords on all accounts.
>
> Paul wrote:
> > I have a few questions that are pretty much related so I'm putting them
> > together in this one post.
> >
> > I am running SBS 2003 Standard with one nic and a hardware firewall/router.
> > My LAN (10 pc's) uses static ip's provided by the ISP and I've set up one to
> > one mapping on the firewall.
> >
> > VPN works ok except for an issue with one remote user that uses DSL/PPPOE at
> > home. He can connect to the SBS server fine but when he disconnects he says
> > that his home LAN becomes inoperable. He can't surf the internet and has to
> > restart the modem to get his LAN back on line. He is behind a Linksys
> > firewall. I'm guessing that he is having IP issues after using the VPN. Is
> > there some setting on his Linksys or on the SBS server I should be adjusting?
> >
> > On that note, I've noticed when I connect from home through VPN that the
> > public IP assigned to me has been one that I thought was already in use. Is
> > this possible/should I map or assign more public IP's for the LAN?
> >
> > Finally, I have seen port 443 probed to death on my firewall logs for RWW.
> > I've seen only one or two articles addressing RWW's inherent security (I
> > think Marina provided a link in another thread) but I'm looking for more
> > feedback. Assuming my SBS is patched and I have strong password policies, how
> > vulnerable am I with port 443 out there in the open.
> >
> > Thanks in advance.
>

Relevant Pages

  • Re: VPN will not work
    ... I have port 1723 open on the router and pointed directlt to the server via NAT ... your post and it appears that the necessary ports for VPN access are ... the primary VPN port. ... using NAT insure that the ports are being forwarded to your SBS server. ...
    (microsoft.public.windows.server.sbs)
  • Re: Need Help - Linksys Mistake! - VPN and OWA
    ... Also from what you guys are kind of relaying to me is to not use the VPN ... If you have ISA installed I suggest you DMZ that router instead ... > of Port Forward otherwise the ports you need to forward are: ... >> to Linksys tech support. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN will not work
    ... your post and it appears that the necessary ports for VPN access are ... the primary VPN port. ... using NAT insure that the ports are being forwarded to your SBS server. ...
    (microsoft.public.windows.server.sbs)
  • Re: VPN/PPOE/RWW Questions/Security
    ... That wouldn't happen to have anything to do with Cisco (Linksys' new owner) ... He can connect to the SBS server fine but when he disconnects he ... I'm guessing that he is having IP issues after using the VPN. ...
    (microsoft.public.windows.server.sbs)
  • Routing and remote access - cant set ports for VPN error 8007033b
    ... I'm trying to reset our SBS server back up for VPN access. ... RRAS is not showing any ports. ... Should I be setting the ports from another location? ...
    (microsoft.public.backoffice.smallbiz2000)