Connection Denial List

Is there anyway that I can setup a connection denial list on 2003 server. For
example I would like to block out mutiple IP ranges from even communicating
with the server regardless of wheather the IP ports are approved by the
firewall?

Yes,...No,...Maybe.

What Firewall?
What 2003 server?
Communicate with "what" on the server?
What is the LAN topology?

You need to explain the "what & why" or there is no real way to answer that.
Also don't assume that what you want to do is even the right approach to
begin with. Layer 3&4 usually is *not* the right approach when within the
LAN, NTFS permissions and Application Level Security usually *are*,...but
there is no way to know that without more details.

--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com




"Lee" <(E-Mail Removed)> wrote in message
news:42105206-AD20-4787-B18B-(E-Mail Removed)...
> Is there anyway that I can setup a connection denial list on 2003 server.
For
> example I would like to block out mutiple IP ranges from even
communicating
> with the server regardless of wheather the IP ports are approved by the
> firewall?

I think it really boils down to holes in the O/S. For example I get a great
amount of continuous (note, continuous) chatter from certain IP addresses.
These ip addresses are having a continuous converation with my computer;
about what I cannot determine, but I know it can't be good. It's not email,
and they are certainly not pulling up my website over and over. the stats
don't support it. So there must be something else going on that is not caught
by virus protection or spyware to allow that amount of continuous chatter. So
by blocking specific ranges of IP addresses (i.e. the known culprits) I can
cut down on potential future problems.

I am able to find these IP addresses using Network Monitor, now I just need
to block them. My previous service provider used a more robust router and I
was able to put the blocks in there much like I can do in Exchange to
eliminate any conversation at all.

"Lee" <(E-Mail Removed)> wrote in message
news:1EB798E5-B0B0-40C2-A7AF-(E-Mail Removed)...
> I think it really boils down to holes in the O/S.

No,....not really.

> For example I get a great
> amount of continuous (note, continuous) chatter from certain IP addresses.
> These ip addresses are having a continuous converation with my computer;
> about what I cannot determine,

It is supposed to be that way.

> but I know it can't be good.

Actually, it probably is good.

> It's not email,
> and they are certainly not pulling up my website over and over. the stats
> don't support it. So there must be something else going on that is not
caught
> by virus protection or spyware to allow that amount of continuous chatter.
So
> by blocking specific ranges of IP addresses (i.e. the known culprits) I
can
> cut down on potential future problems.

....and you will most likely destroy the Ethernet LAN functionality.

>> I am able to find these IP addresses using Network Monitor, now I just
need
> to block them. My previous service provider used a more robust router and
I
> was able to put the blocks in there much like I can do in Exchange to
> eliminate any conversation at all.

Service Provider? We were talking about LANs,...how did it switch to ISPs
and the Internet?


--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com

We were talking about denying connections to certain IP addresses. It should
not matter where they exist, LAN or WAN, But in this case WAN.

"Lee" <(E-Mail Removed)> wrote in message
news:A5B0C0DC-B9A2-404D-BCBC-(E-Mail Removed)...
> We were talking about denying connections to certain IP addresses. It
should
> not matter where they exist, LAN or WAN, But in this case WAN.

You're are taking the wrong approach it sounds like to me. What kind of
"WAN"? Just calling a "WAN" is too generic,..I need to know what it is
really designed like. Is traffic between the LAN Sites all live in one
subnet?,...different subnets "routed"?,...different subnets "Nat'ed"? Is
each individual LAN all one subnet within thier own self?

--
Phillip Windell [MCP, MVP, CCNA]
www.wandtv.com