You can set it to the highest setting, and go into the advanced setting and open ports, SMPT 25, POP 110, Web Mail Port 8383, and Calendaring Port 8484, then it will work on the highest settings. I especially closed the normally attacked ports, in fact I think I closed everything then allowed only the ports it takes to allow email to work.
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of john cesta Sent: Friday, November 19, 2004 8:00 AM To: Dan Horne Subject: Re: [IMail Forum] Blackice Settings On Fri, 19 Nov 2004 10:17:02 -0500, Dan Horne wrote: > I have just obtained BlackICE Server Protection for my mail servers > to stop > > the flood of Dictionary attacks we are receiving. I have installed > it and I > have made the changes that "Cycle Rider" suggested, but I would > just like to > make sure I have all settings correct (not the edits proposed by > "Cycle > Rider" but the BlackICE settings. Right now it is running in > "Trusting" > mode, which means it isn't blocking anything. I also did not > enable the > Application Protection. > > My specific questions are these: > > 1) What Protection Level should I choose? I would choose paranoid and then add the ports you require. This is a dedicated > Imail box, so > I just want to make sure everyone that needs to can access the > proper ports. > I chose Cautious for a second and wasn't able to connect on POP3, > so I set > it back to Trusting. You will need to add the required ports. This is the extent of my configuration > testing so far. > > Ultimately I would like to block all ports except those I > specifically > request to be open, meaning Paranoid Level, so: > > 2) In the Advanced Firewall Settings, if I specifically allow SMTP, > POP3, > HTTP & HTTPS (webmail), and IMAP4 ports does this negate the "auto- > blocking" > feature on SMTP that is the whole reason I got the program? When you allow smtp and pop3 BI will still prevent unauthorized calls to those ports. Then you can add the undocumented settings to the ini files for further protection. John > > Dan Horne > Web Services Administrator > TAIS Web > Wilcox World Travel & Tours > [EMAIL PROTECTED] > ---------------------------------------------------- > > CONFIDENTIALITY NOTICE: > This email message, including any attachments, is for the sole use > of the > intended recipient(s) and may contain confidential and privileged > information. Any unauthorized review, use, disclosure or > distribution is > prohibited. If you are not the intended recipient, please contact > the sender > by reply email and destroy all copies of the original message. > > SPAM-FREE 1.0(2476) > > > To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html > List Archive: http://www.mail- > archive.com/imail_forum%40list.ipswitch.com/ > Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/ iMAIL Reporter - Reports on iMAIL server and POP users LogFileManager - IIS LogFile Management Tool WebPageChecker - Helps Maintain Server UpTime DomainReportIt PRO - Helps Rebuild IIS http://www.serverautomationtools.com To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/ To Unsubscribe: http://www.ipswitch.com/support/mailing-lists.html List Archive: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/ Knowledge Base/FAQ: http://www.ipswitch.com/support/IMail/
