vulnerable ports

Hello,
I am using an application which uses RPC. At the same time I want to use
IPSec to avoid the security attacks. Now I dissabled all the unwanted ports,
so the application is not working. Since RPC dont use a single port I cant
enable a single port. Will you please tell me the way to solve this problem.
Is there any list of vulnerable ports? Is it enough to close those ports
alone to solve the security issue? If yes please give me link where I can get
the details.

Thank you.
Dhilip

Hi,

Is this computer behind firewall or is directly exposed to the internet?

What service is running on the computer that is using RPC? Even when using
RPC some applications allow you to statically define TCP ports that it will
use for connections to the server. This can make configuration of the
firewall a bit easier.

Note: It is not ports that are vulnerable, but services that run behind that
port. Here are few things that you should do if you need to secure your
server:
* patch the server with latest updates
* shut down all unnecessary services (which will close unnecessary ports);
to do this correctly you will have to know what is running on the server and
what you really need from your server
* securely configure services that need to run on the server (e.g. IIS, DNS,
....)

--
Mike
Microsoft MVP - Windows Security

"Dhilip" <(E-Mail Removed)> wrote in message
news:64E1D748-B4D6-4A3F-ABEE-(E-Mail Removed)...
> Hello,
> I am using an application which uses RPC. At the same time I want to use
> IPSec to avoid the security attacks. Now I dissabled all the unwanted
> ports,
> so the application is not working. Since RPC dont use a single port I cant
> enable a single port. Will you please tell me the way to solve this
> problem.
> Is there any list of vulnerable ports? Is it enough to close those ports
> alone to solve the security issue? If yes please give me link where I can
> get
> the details.
>
> Thank you.
> Dhilip