A firewall is the simplest way to stop this. As for being on a budget, there are a number of firewalls out there that are very affordable. Particularly for smaller companies that don't have a lot of users. Netscreen, Sonicwall, etc.
I understand the part about being on a budget, but there are certain costs involved in doing business. If one chooses to have an internet connection, a firewall is part of that cost. Ask the client, what value do they place on their data? If they are fine with anyone dropping in and cruising their network, then don't get a firewall. But I'm sure there is some value to that data. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] Sent: Wednesday, September 18, 2002 7:38 PM To: NT 2000 Discussions Subject: Securing NT4 on the Internet I realise that there is probably many a guide on the best way to go about securing an NT4 server that is directly exposed to the Internet. However, after much ado i've found nothing. The basic issue is that we have an NT4 VPN server which has 2 network cards. One is public, one is private. There is no software or hardware firewall in place and the client is on a budget, so checkpoint is out of the question. The problem arises from attacks by random people on the internet trying to log into their NT4 accounts, failing, and causing the account to become locked. I assume this is because ports 137 and 139 are opened on this external interface. What is the simplest way to close these ports and prevent such dastardly acts from occuring again? Thanking you in advance, Luke. ------ You are subscribed as [EMAIL PROTECTED] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to %%email.unsub%% ------ You are subscribed as [email protected] Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe send a blank email to [EMAIL PROTECTED]
