Thanks, that answers my questions. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of john cesta Sent: Friday, November 19, 2004 11:00 AM To: Dan Horne Subject: Re: [IMail Forum] Blackice Settings
On Fri, 19 Nov 2004 10:17:02 -0500, Dan Horne wrote: > I have just obtained BlackICE Server Protection for my mail servers to > stop > > the flood of Dictionary attacks we are receiving. I have installed it > and I have made the changes that "Cycle Rider" suggested, but I would > just like to make sure I have all settings correct (not the edits > proposed by "Cycle Rider" but the BlackICE settings. Right now it is > running in "Trusting" > mode, which means it isn't blocking anything. I also did not enable > the Application Protection. > > My specific questions are these: > > 1) What Protection Level should I choose? I would choose paranoid and then add the ports you require. This is a dedicated > Imail box, so > I just want to make sure everyone that needs to can access the proper > ports. > I chose Cautious for a second and wasn't able to connect on POP3, so I > set it back to Trusting. You will need to add the required ports. This is the extent of my configuration > testing so far. > > Ultimately I would like to block all ports except those I specifically > request to be open, meaning Paranoid Level, so: > > 2) In the Advanced Firewall Settings, if I specifically allow SMTP, > POP3, HTTP & HTTPS (webmail), and IMAP4 ports does this negate the > "auto- blocking" > feature on SMTP that is the whole reason I got the program? When you allow smtp and pop3 BI will still prevent unauthorized calls to those ports. Then you can add the undocumented settings to the ini files for further protection. John > > Dan Horne > Web Services Administrator > TAIS Web > Wilcox World Travel & Tours > [EMAIL PROTECTED] > ---------------------------------------------------- > > CONFIDENTIALITY NOTICE: > This email message, including any attachments, is for the sole use of > the intended recipient(s) and may contain confidential and privileged > information. Any unauthorized review, use, disclosure or distribution > is prohibited. If you are not the intended recipient, please contact > the sender by reply email and destroy all copies of the original > message. > > SPAM-FREE 1.0(2476) > > > To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html > List Archive: http://www.mail- > archive.com/imail_forum%40list.ipswitch.com/ > Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/ iMAIL Reporter - Reports on iMAIL server and POP users LogFileManager - IIS LogFile Management Tool WebPageChecker - Helps Maintain Server UpTime DomainReportIt PRO - Helps Rebuild IIS http://www.serverautomationtools.com To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/ To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
