Port Filter
In order to ensure basic protection of the computers at the Bauhaus-Universität Weimar, certain services are blocked from accessing the Internet (ports to and from the Internet access of the Bauhaus-Universität Weimar).
Overview of blocked ports
Port(s) | Protocol | Name, Description | Direction |
---|---|---|---|
21 | TCP, UDP | FTP (Exceptions) | incoming |
23 | TCP, UDP | Telnet | incoming |
25 | TCP | SMTP (Exceptions) | both |
67-69 | TCP, UDP | bootp, tftp | incoming |
111 | TCP, UDP | SUN RPC | both |
135, 137-139 | TCP, UDP | NetBIOS Win 9x | both |
161,162 | TCP, UDP | SNMP | both |
389 | TCP, UDP | LDAP | incoming |
427 | TCP, UDP | Novell over IP, server location | both |
445 | TCP, UDP | WINS | both |
512-515 | TCP, UDP | R-Commands | incoming |
1080 | TCP | Socks Application proxy | incoming |
1433, 1434 | UDP | SQL | incoming |
1900 | UDP | SSDP | both |
2049, 4045 | TCP, UDP | NFS | both |
3389 | TCP, UDP | RDP | incoming |
5353 | UDP | multicast DNS | both |
9100 | TCP | Print (RAW IP/JetDirect) | incoming |
Additional measures
- Block access to broadcast addresses (x.x.x.0 and x.x.x.255) incoming
- Preventing IP spoofing in both directions