Configuring TCPIP Packet Filters

Configuring TCP/IP Packet Filters

For increased security, you can implement IP packet filters to control the type of inbound IP traffic allowed to enter your computer and/or network. Inbound traffic can be filtered by destination TCP port, destination UDP port, and by IP protocol type.

Implementing IP Packet Filters

Use the following process to implement IP packet filters:

  1. Within the Network and Dial-up Connections applet, right-click the Local Area Connection and select Properties.

  2. Select the Internet Protocol (TCP/IP) and click the Properties button.

  3. From the Internet Protocol (TCP/IP) Properties window, click the Advanced button and select the Options tab (see Figure 5.7).

    Figure 5.7. Configuring TCP/IP options.

    graphics/05fig07.jpg

  4. From the Optional Settings list, select TCP/IP Filtering and click Properties.

  5. The TCP/IP Filtering window appears. To enable filtering, select the check box beside the Enable TCP/IP filtering option (see Figure 5.8).

    Figure 5.8. Enabling TCP/IP filtering.

    graphics/05fig08.jpg

By default, traffic on all TCP and UDP ports are allowed. To specify the type of traffic allowed to reach your computer, select one of the Permit Only options (depending on whether you want to configure TCP, UDP, or protocols) and click Add. If you are configuring TCP and UDP traffic, you will specify the port number (Tables 5.3 and 5.4 summarize some of the common ports used by TCP and UDP). To configure protocols, specify the type of IP protocol to which you want to allow access.

Table 5.3. TCP Ports

Port Number

Description

20

FTP-Data

21

FTP-Control

23

Telnet

25

SMTP

80

HTTP

443

HTTPS

Table 5.4. UDP Ports

Port Number

Description

53

DNS Name Resolution

110

POP3

137

NetBIOS name service

143

IMAP



Windows 2000 Network Infrastructure Exam Cram 2 (Exam 70-216)
MCSE Windows 2000 Network Infrastructure Exam Cram 2 (Exam Cram 70-216)
ISBN: 078972863X
EAN: 2147483647
Year: 2005
Pages: 167

flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net