block ports permanently

can't find what you say about Blackspear ,,was googling..but

 

btw i'm behind a router firewall and at dslreports westell-forum i was given a good set of rules..i ran a test in shields-up testing all ports..and i pass the test

should i run seconfig xp...after running this app.i see i have some tcp and udp ports open and some services enabled...
generally i closed some services from other site's list..

 

An easy way to block certain ports is to use Worms Doors Cleaner,very simple to re-enable anything if necessary too.

http://www.softpedia.com/get/Security/Firewall/Windows-Worms-Doors-Cleaner.shtml

 

blackviper sorry

http://www.blackviper.com/WinXP/servicecfg.htm

 

ajap,

no need to be confused. To simplify as much as possible, these are, in summary, all the blocking rules you should have for your specific coniguration -

Tcp Outgoing Any Any Any 23
Tcp Outgoing Any Any Any 445
Udp Outgoing Any 137-138 Any Any
Tcp Outgoing Any Any Any 139
Udp Outgoing Any Any Any 1900
Tcp Outgoing Any Any Any 5000
Tcp Outgoing Any 135 Any Any

The rest of the blocking rules should be deleted. This is my opinion.
End of story.

Cheers,

 

hi seer, that is what i really wanted.
I deeply appreciate the help you have gave me
for the rest who gave me suggestions too , thank for all
end of the story and end of the post. you can close it.

 

I was just answering the above question.

There was another site/paper I wanted to reference but couldn't locate. From the atackers perspective going through each step, starting with nmap progressing through the firewall or IDS. Would've been useful to the OP to see the anatomy of an attack. This was my next available via google.

I have a firewall in my router, I block everything except DNS, HTTP, HTTPS and whatever else I choose to allow as needed.