473,320 Members | 1,846 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

Join Bytes to post your question to a community of 473,320 software developers and data experts.

Block Port 1433 on windows 2000 server

Ann
Hi

I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port? I tried using a tool
called Ipsecpol.exe ( Internet Protocol Security Policies Tool). But
when we run netstat, it still looks like they are able to connect to
the server using port 1433. Has anyone come across this problem? I
would appreciate it very much if somebody could send in any
suggestions regarding this.

Thanks,
Ann
Jul 20 '05 #1
6 9941
The issue isn't really "closing ports" - it's blocking access to them.
Are you using ISA? If not, you need a firewall. I'd pick up a cheap and
cheerful firewall appliance - I like the NetGear FR114P.

Ann wrote:
Hi

I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port? I tried using a tool
called Ipsecpol.exe ( Internet Protocol Security Policies Tool). But
when we run netstat, it still looks like they are able to connect to
the server using port 1433. Has anyone come across this problem? I
would appreciate it very much if somebody could send in any
suggestions regarding this.

Thanks,
Ann

Jul 20 '05 #2
On 12 Jul 2004 14:56:40 -0700, ns****@yahoo.com (Ann) wrote:
I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port?


Don't open it in your firewall. Or any other port you don't want
accessed.

Jeff
Jul 20 '05 #3
Hi

This sounds like your SQL Server is not behind the firewall or as the others
have suggested the firewall is not configured correctly.

How do you know someone is trying to access the SQL Server? If this is being
reported from the firewall then it may be because it is dropping it!!

If you are not using windows only authentication, then make sure that you
have a strong sa password.You could run the Microsoft Baseline Security
Analyzer http://www.microsoft.com/technet/sec.../mbsahome.mspx to
make sure it is configured sensibly. I would also look at running IIS
lockdown on any webserver
http://www.microsoft.com/security/gu...dtech/IIS.mspx

Check out the advice on:
http://www.microsoft.com/sql/techinf...ty/default.asp
http://www.sqlsecurity.com/DesktopDefault.aspx?tabid=24

John

"Ann" <ns****@yahoo.com> wrote in message
news:cc**************************@posting.google.c om...
Hi

I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port? I tried using a tool
called Ipsecpol.exe ( Internet Protocol Security Policies Tool). But
when we run netstat, it still looks like they are able to connect to
the server using port 1433. Has anyone come across this problem? I
would appreciate it very much if somebody could send in any
suggestions regarding this.

Thanks,
Ann

Jul 20 '05 #4
dev
Hi Ann.

The easy one is to buy a firewall box from your local computer store
or If you are using a windows server 2003 use the firewall insite
windows server 2003 (ICF). Click on the link to see how to enable it.
http://www.microsoft.com/resources/d...e_firewall.asp

After you either buy a firewall box or enabled ICF on your server then
try this link:
- www.grc.com
- Click ShieldsUp
- Roll down to HOT SPOT and click again shieldsUp
- click proceed
- write 1433 in the text field and click "User Specified Custom Port
Probe"
- See if its stealth.
- You can then click common ports to see if the common ports are
stealth or click all service ports to see if other ports are
open...(The best is if every one are green and not red)

Hope you understand this and solve this problem..

Danni, MCP
I have a question regarding the SQL Server(SQL Server 7) port 1433.
Some body is trying to hack into our Windows 2000 server through port
1433. Is there a way i can close this port?

Jul 20 '05 #5
dev
Sorry. i forgot it was a windows 2000 server. There is not a ICF.
You could also get a software firewall like ZoneAlarm??? If the server
is in a big firm it mabye better with a firewall box.

Danni
Jul 20 '05 #6
On 13 Jul 2004 01:22:45 -0700, de*@euro-consult.dk wrote:
Sorry. i forgot it was a windows 2000 server. There is not a ICF.
You could also get a software firewall like ZoneAlarm???
For home machines, that is fine, as would be the Sygate product. For
anything used 'in anger' this is a risky solution.
If the server is in a big firm it mabye better with a firewall box.


In any situation where the data and system availability/integrity is
valuable, a hardware firewall solution is the only way to go.
Jul 20 '05 #7

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

2
by: nik | last post by:
Hi all I'm struggling to find an answer to this one! We've configured our SQL boxes to run under a different port number, e.g. from 1433 to 4533. This works fine under our Citrix enviornmnet...
2
by: Joseph | last post by:
for some reason i dont get any errors, but i believe that my server is not running on port 1433. the tcpip protocol is selected in the network configuration utility as well as name piper. the port...
1
by: Akif | last post by:
Hi. I'm a SQL Server novice, so apologies if any of this sounds simple. I am running Windows XP SP2, and have just installed SQLServer 2000. I need another application to connect to SQLServer,...
1
by: Byrocat | last post by:
I'm doing some vulnerability assessments of MS SQLServer installations using AppDetective. On doing the "discovery" proble (to find the instances), I find that I get two "hits" -- port 1433...
2
by: Mark Lauser | last post by:
Hello, I'm running a vb.net Windows application that communicates with a SQL Server using SQLClient.SQLConnection. How do I specify the port on the client that should be used for this...
1
by: Mario | last post by:
Witam! Mam problem z polaczeniem sie z baza danych po TCP/IP przez port domyslny 1433, nie mozna sie telnetowac ani nic z nim zrobic, poprostu niezyje. Port jest zamkniety i nijak nie moge go...
1
usafshah
by: usafshah | last post by:
i have installed sql server 2000 and set default port 1433. but i ca'nt access from outside ..i have given access to sql server machine from outside ip . but i guess something is wrong the port...
0
by: basuritta | last post by:
I am trying to add a SQL2000 subscriptor to a SQL2005 publisher and distributor using the Management Studio. I'm using a non-standard port in both ends, but I have set the port for the TCP/IP...
0
by: thesti | last post by:
hello, i'm trying to connect to SQL Server 2000 on my localhost through JDBC. i'm using the Microsoft SQL Server JDBC Driver 2.0 i couldnt make it, as i get the following error Unable to...
0
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
1
isladogs
by: isladogs | last post by:
The next Access Europe meeting will be on Wednesday 6 Mar 2024 starting at 18:00 UK time (6PM UTC) and finishing at about 19:15 (7.15PM). In this month's session, we are pleased to welcome back...
0
by: Vimpel783 | last post by:
Hello! Guys, I found this code on the Internet, but I need to modify it a little. It works well, the problem is this: Data is sent from only one cell, in this case B5, but it is necessary that data...
0
by: jfyes | last post by:
As a hardware engineer, after seeing that CEIWEI recently released a new tool for Modbus RTU Over TCP/UDP filtering and monitoring, I actively went to its official website to take a look. It turned...
0
by: ArrayDB | last post by:
The error message I've encountered is; ERROR:root:Error generating model response: exception: access violation writing 0x0000000000005140, which seems to be indicative of an access violation...
0
by: CloudSolutions | last post by:
Introduction: For many beginners and individual users, requiring a credit card and email registration may pose a barrier when starting to use cloud servers. However, some cloud server providers now...
0
by: Defcon1945 | last post by:
I'm trying to learn Python using Pycharm but import shutil doesn't work
1
by: Shællîpôpï 09 | last post by:
If u are using a keypad phone, how do u turn on JavaScript, to access features like WhatsApp, Facebook, Instagram....
0
by: Faith0G | last post by:
I am starting a new it consulting business and it's been a while since I setup a new website. Is wordpress still the best web based software for hosting a 5 page website? The webpages will be...

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.