Results 1 to 17 of 17
  1. #1
    Join Date
    Oct 2005
    Location
    Six Degrees From You
    Posts
    1,075

    Windows server management

    Hi Guys,

    I have just taken delivery of a shiny Windows 2K3 server from a2b2.com and wanted to secure it so that only remote desktop and port number 3306 from certan IP address are allowed to connect to it. I would also like to have NO outgoing connections allowed at all.

    My question is are there any companies that you would recomend to do this?

    Many Thanks
    Paul

  2. #2
    This seems like a small job if RDP is the only thing that you are looking at. Are you looking at further securing your server and monitoring it 24x7 or just the task that you mentioned?

  3. #3

  4. #4
    Join Date
    Jan 2007
    Posts
    80
    yeah i would recommend u look in to windows firewall .. or zonealarm...
    ///--One Way, Three Way and Reciprocal linkings -////
    Boost your backlinks today! http://www.rankready.com
    Fully automate your linking process with a natural way.

  5. #5
    Windows Firewall is too basic. ZoneAlarm is good. Another option I recommend is Visnetic Firewall from Deerfield. Nice application layer filtering options.

    Whatever you install make sure that you do not lock yourself out by blocking the RDP port.

  6. #6
    Join Date
    Jan 2007
    Posts
    80
    i have used windows firewall... and i think its not as basic and unsecure as u think.. u can compare it with some good firewalls out there.... the basic function of a firewall is to block ports and i think its doing tht fine enough
    ///--One Way, Three Way and Reciprocal linkings -////
    Boost your backlinks today! http://www.rankready.com
    Fully automate your linking process with a natural way.

  7. #7
    I would not agree that the basic function of a firewall is to block ports. Ideally you should always have a perimeter firewall which blocks ports and another set which filters traffic.

    The perimeter firewall would work at the Network Layer while the Application Firewall would work at the Application Layer. This way you can seure your servers at the best level.

    If you are not looking at investing a lot in to all this, then the best bet is to enable Windows Basic Firewall for port blocking and then lock-down IIS. I would still recommend installing a application layer firewall. It's worth the investment.

  8. #8

    Security....

    Hello PaulStuffins,

    Windows default firewall is very basic and do not have usefull functionality.
    You can either use hardware firewall for your servers.
    I am working as a Windows System Administrator from last 3 years.
    If you set up/configure your server with proper security, with continuous monitoring then belive me you do not need to worry about the security holes.We have some customized tools to secure and monitor server, real time cpu load, memory load, number of connections to server,SYN attack, DOS attack....
    There are many ways using which you can completely secure servers, which a regular task of my duty hours.
    Belive me ocne you set up your server properly you will not have to worry about it for a long time.
    I am working as SysAdmin for more that 1000 servers.
    <snip>


    Cheers.
    Last edited by bear; 01-25-2007 at 01:12 PM.

  9. #9
    Please note that, by default all the ports are open on windows server. You need to block them as per your requirements.you can block the ports in default firewall as well as from any external firewall.

  10. #10
    Join Date
    Feb 2004
    Posts
    390
    Quote Originally Posted by PaulStuffins
    Hi Guys,

    I have just taken delivery of a shiny Windows 2K3 server from a2b2.com and wanted to secure it so that only remote desktop and port number 3306 from certan IP address are allowed to connect to it. I would also like to have NO outgoing connections allowed at all.

    My question is are there any companies that you would recomend to do this?

    Many Thanks
    Paul
    I'd recommend checking out got-management.com. I've heard good things about their Windows management services.

  11. #11
    Join Date
    Sep 2005
    Location
    Albany, NY
    Posts
    3,795
    Yep, contact Jon from got-management.com. You could do this yourself but if you want some help, they are the guys to go to.
    AYKsolutions.com - High Bandwidth Specialists - 100TB/1Gbps/10Gbps Unmetered/CDN/DDOS Protected
    Over 20 Global Locations - Asia, Mexico, Brazil, India, Australia, US, CA, EU - Bare Metal and Virtual Cloud. All Managed.
    View our current Specials.
    We are Professional. Painless. Polite.

  12. #12
    Join Date
    Sep 2006
    Location
    San Jose
    Posts
    57
    Anyone cheaper than got-management.com ?

  13. #13
    Join Date
    Jan 2007
    Posts
    80
    have u tried cheap managed hosting company keyword in google ?
    ///--One Way, Three Way and Reciprocal linkings -////
    Boost your backlinks today! http://www.rankready.com
    Fully automate your linking process with a natural way.

  14. #14
    Join Date
    Oct 2005
    Location
    Six Degrees From You
    Posts
    1,075
    Hi Guys,

    Thanks for all your replys but the os has been changed to Ubuntu. Thanks again for the sugestions I will keep them in mind for future if I need any Windows management.

    Paul

  15. #15
    Ubuntu seems like an odd choice as a server OS, any reason you chose it?
    BeeServe
    * Rock solid shared & reseller UK webhosting. No downtime™ *
    Now offering fully managed VPS servers

  16. #16
    Join Date
    Oct 2005
    Location
    Six Degrees From You
    Posts
    1,075
    Hi Jeff,

    I have been informed that Ubuntu would be best for my needs. Running just MySQL on the server.

    Paul

  17. #17
    contrary to the opinions expressed here, the windows server packet filtering is more than up to the job. figure as well that as a native capability, it is better integrated into the network stack than any third party offering could ever be.

    the trick of course is to know packet filtering absolutely cold.
    edgedirector.com
    managed dns global failover and load balance (gslb)
    exactstate.com
    uptime report for webhostingtalk.com

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •