Port Filter

In order to ensure basic protection of the computers at the Bauhaus-Universität Weimar, certain services are blocked from accessing the Internet (ports to and from the Internet access of the Bauhaus-Universität Weimar).

Overview of blocked ports

Port(s)ProtocolName, DescriptionDirection
21TCP, UDPFTP (Exceptions)incoming
23TCP, UDPTelnetincoming
25TCPSMTP (Exceptions)both
67-69TCP, UDPbootp, tftpincoming
111TCP, UDPSUN RPCboth
135, 137-139TCP, UDPNetBIOS Win 9xboth
161,162TCP, UDPSNMPboth
389TCP, UDPLDAPincoming
427TCP, UDPNovell over IP, server locationboth
445TCP, UDPWINSboth
512-515TCP, UDPR-Commandsincoming
1080TCPSocks Application proxyincoming
1433, 1434UDPSQLincoming
1900UDPSSDPboth
2049, 4045TCP, UDPNFSboth
3389TCP, UDPRDPincoming
5353UDPmulticast DNSboth
9100TCPPrint (RAW IP/JetDirect)incoming

Additional measures

  • Block access to broadcast addresses (x.x.x.0 and x.x.x.255) incoming
  • Preventing IP spoofing in both directions