473,396 Members | 1,608 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,396 software developers and data experts.

Block Port 1433 on windows 2000 server

Ann
Hi

I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port? I tried using a tool
called Ipsecpol.exe ( Internet Protocol Security Policies Tool). But
when we run netstat, it still looks like they are able to connect to
the server using port 1433. Has anyone come across this problem? I
would appreciate it very much if somebody could send in any
suggestions regarding this.

Thanks,
Ann
Jul 20 '05 #1
6 9946
The issue isn't really "closing ports" - it's blocking access to them.
Are you using ISA? If not, you need a firewall. I'd pick up a cheap and
cheerful firewall appliance - I like the NetGear FR114P.

Ann wrote:
Hi

I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port? I tried using a tool
called Ipsecpol.exe ( Internet Protocol Security Policies Tool). But
when we run netstat, it still looks like they are able to connect to
the server using port 1433. Has anyone come across this problem? I
would appreciate it very much if somebody could send in any
suggestions regarding this.

Thanks,
Ann

Jul 20 '05 #2
On 12 Jul 2004 14:56:40 -0700, ns****@yahoo.com (Ann) wrote:
I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port?


Don't open it in your firewall. Or any other port you don't want
accessed.

Jeff
Jul 20 '05 #3
Hi

This sounds like your SQL Server is not behind the firewall or as the others
have suggested the firewall is not configured correctly.

How do you know someone is trying to access the SQL Server? If this is being
reported from the firewall then it may be because it is dropping it!!

If you are not using windows only authentication, then make sure that you
have a strong sa password.You could run the Microsoft Baseline Security
Analyzer http://www.microsoft.com/technet/sec.../mbsahome.mspx to
make sure it is configured sensibly. I would also look at running IIS
lockdown on any webserver
http://www.microsoft.com/security/gu...dtech/IIS.mspx

Check out the advice on:
http://www.microsoft.com/sql/techinf...ty/default.asp
http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=24

John

"Ann" <ns****@yahoo.com> wrote in message
news:cc**************************@posting.google.c om...
Hi

I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port? I tried using a tool
called Ipsecpol.exe ( Internet Protocol Security Policies Tool). But
when we run netstat, it still looks like they are able to connect to
the server using port 1433. Has anyone come across this problem? I
would appreciate it very much if somebody could send in any
suggestions regarding this.

Thanks,
Ann

Jul 20 '05 #4
dev
Hi Ann.

The easy one is to buy a firewall box from your local computer store
or If you are using a windows server 2003 use the firewall insite
windows server 2003 (ICF). Click on the link to see how to enable it.
http://www.microsoft.com/resources/d...e_firewall.asp

After you either buy a firewall box or enabled ICF on your server then
try this link:
- www.grc.com
- Click ShieldsUp
- Roll down to HOT SPOT and click again shieldsUp
- click proceed
- write 1433 in the text field and click "User Specified Custom Port
Probe"
- See if its stealth.
- You can then click common ports to see if the common ports are
stealth or click all service ports to see if other ports are
open...(The best is if every one are green and not red)

Hope you understand this and solve this problem..

Danni, MCP
I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port?

Jul 20 '05 #5
dev
Sorry. i forgot it was a windows 2000 server. There is not a ICF.
You could also get a software firewall like ZoneAlarm??? If the server
is in a big firm it mabye better with a firewall box.

Danni
Jul 20 '05 #6
On 13 Jul 2004 01:22:45 -0700, de*@euro-consult.dk wrote:
Sorry. i forgot it was a windows 2000 server. There is not a ICF.
You could also get a software firewall like ZoneAlarm???
For home machines, that is fine, as would be the Sygate product. For
anything used 'in anger' this is a risky solution.
If the server is in a big firm it mabye better with a firewall box.


In any situation where the data and system availability/integrity is
valuable, a hardware firewall solution is the only way to go.
Jul 20 '05 #7

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

2
by: nik | last post by:
Hi all I'm struggling to find an answer to this one! We've configured our SQL boxes to run under a different port number, e.g. from 1433 to 4533. This works fine under our Citrix enviornmnet...
2
by: Joseph | last post by:
for some reason i dont get any errors, but i believe that my server is not running on port 1433. the tcpip protocol is selected in the network configuration utility as well as name piper. the port...
1
by: Akif | last post by:
Hi. I'm a SQL Server novice, so apologies if any of this sounds simple. I am running Windows XP SP2, and have just installed SQLServer 2000. I need another application to connect to SQLServer,...
1
by: Byrocat | last post by:
I'm doing some vulnerability assessments of MS SQLServer installations using AppDetective. On doing the "discovery" proble (to find the instances), I find that I get two "hits" -- port 1433...
2
by: Mark Lauser | last post by:
Hello, I'm running a vb.net Windows application that communicates with a SQL Server using SQLClient.SQLConnection. How do I specify the port on the client that should be used for this...
1
by: Mario | last post by:
Witam! Mam problem z polaczeniem sie z baza danych po TCP/IP przez port domyslny 1433, nie mozna sie telnetowac ani nic z nim zrobic, poprostu niezyje. Port jest zamkniety i nijak nie moge go...
1
usafshah
by: usafshah | last post by:
i have installed sql server 2000 and set default port 1433. but i ca'nt access from outside ..i have given access to sql server machine from outside ip . but i guess something is wrong the port...
0
by: basuritta | last post by:
I am trying to add a SQL2000 subscriptor to a SQL2005 publisher and distributor using the Management Studio. I'm using a non-standard port in both ends, but I have set the port for the TCP/IP...
0
by: thesti | last post by:
hello, i'm trying to connect to SQL Server 2000 on my localhost through JDBC. i'm using the Microsoft SQL Server JDBC Driver 2.0 i couldnt make it, as i get the following error Unable to...
0
by: Charles Arthur | last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
0
by: ryjfgjl | last post by:
In our work, we often receive Excel tables with data in the same format. If we want to analyze these data, it can be difficult to analyze them because the data is spread across multiple Excel files...
0
by: emmanuelkatto | last post by:
Hi All, I am Emmanuel katto from Uganda. I want to ask what challenges you've faced while migrating a website to cloud. Please let me know. Thanks! Emmanuel
0
BarryA
by: BarryA | last post by:
What are the essential steps and strategies outlined in the Data Structures and Algorithms (DSA) roadmap for aspiring data scientists? How can individuals effectively utilize this roadmap to progress...
1
by: Sonnysonu | last post by:
This is the data of csv file 1 2 3 1 2 3 1 2 3 1 2 3 2 3 2 3 3 the lengths should be different i have to store the data by column-wise with in the specific length. suppose the i have to...
0
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
0
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
0
Oralloy
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
0
by: Hystou | last post by:
Overview: Windows 11 and 10 have less user interface control over operating system update behaviour than previous versions of Windows. In Windows 11 and 10, there is no way to turn off the Windows...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.