Hi you can try to close all ports and then open only the ones you need as John says
This link has some work on cisco access-list that you can use to make your rules http://www.mtiweb.com/isp/ciscoacc.html ----- Original Message ----- From: "John Stauffacher" <[EMAIL PROTECTED]> To: "'Clint Goodwin'" <[EMAIL PROTECTED]>; "'security-basics'" <[EMAIL PROTECTED]> Sent: Monday, March 18, 2002 2:21 PM Subject: RE: Help With firewall ports > As a good practice, block all, and only open up the ones you need > 80,22,25 (if your running smtp),110 (pop3), 143 (imap),53 udp/tcp (dns), > etc... > > ++ > John Stauffacher > Network Administrator > Chapman University > [EMAIL PROTECTED] > 714-628-7249 > > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf > Of Clint Goodwin > Sent: Sunday, March 17, 2002 2:47 AM > To: security-basics > Subject: Help With firewall ports > > Hi all, > > I was wondering what would be a good list of ports to block at my > firewall. > I have some of the most common ones covered , however I Don't have > > a lot of experience with firewalls yet. > Can someone point me to a good resource or even provide me with a > list to help me get started. > > Thanks in advance > > Clint Goodwin > >