1 / 14

Corso referenti S.I.R.A. – Modulo 2

Corso referenti S.I.R.A. – Modulo 2. Windows Client & Server Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano Viola (CSIA). Windows firewall: la difesa sul client. L’elenco delle eccezioni.

nardo
Download Presentation

Corso referenti S.I.R.A. – Modulo 2

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Corso referenti S.I.R.A. – Modulo 2 Windows Client & Server Security 20/11 – 27/11 – 05/12 11/12 – 13/12 (gruppo 1) 12/12 – 15/12 (gruppo 2) Cristiano Gentili, Massimiliano Viola (CSIA)

  2. Windows firewall: la difesa sul client

  3. L’elenco delle eccezioni

  4. Modificare la visibilità del servizio

  5. Definire le eccezioni (1)

  6. Definire le eccezioni (2)

  7. Eccezioni diversificate per connessione

  8. Definire le eccezioni per connessione (1)

  9. Definire le eccezioni per connessione (2)

  10. Logging dell’attività

  11. Deployment/Configuration Deploying Windows Firewall Settings • Windows Firewall INF file %windir%\Inf\Netfw.inf • Using Netsh To allow incoming traffic on TCP port 80 netsh firewall add portopening protocol=TCP port=80 name=”Web Server (TCP 80)” mode=ENABLE scope=SUBNET profile=DOMAIN • Using Group Policy

  12. Firewall via GPO

  13. Il Futuro Windows Firewall in Windows Vista and Windows Server "Longhorn" enhancements • Supports filtering for both incoming and outgoing traffic • Firewall filtering and Internet Protocol security (IPsec) • exceptions can be configured for Active Directory accounts and groups, source and destination IP addresses, IP protocol number, source and destination Transmission Control Protocol (TCP) and User Datagram Protocol (UDP) ports, all or multiple TCP or UDP ports, specific types of interfaces, Internet Control Message Protocol (ICMP) and ICMP for IPv6 (ICMPv6) traffic by Type and Code, and for services

  14. More info Windows Firewall http://www.microsoft.com/technet/network/wf/default.mspx Network Ports Used by Key Microsoft Server Products http://www.microsoft.com/technet/security/smallbusiness/topics/ServerSecurity/ref_net_ports_ms_prod.mspx

More Related