Shields up port scan/NIS 2003

[waynezo]

I ran a common port scan with the shields up website and my ports were stealthed except port 1024. They reccomended that I configure my firewall, (norton intenet security 2003) to close ports 1024 thru 1030. I can't find out how to do it in any of the help menus. Does NIS 2003 allow this configuration?

My system,
Athlon xp2400 cpu
Gigabyte GA-7vaxp mb with promise onboard raid controller
kingston value ram 512ddr pc3200 400mhz
dual 80gig maxtor hd's 7200rpm ata 133 raid 0
artec 16X DVD-ROM
cyberdrive 40X16X48 CDRW
ati all in wonder 8500dv video card
Nokia 21" 445Xpro Monitor
antec 430 watt true power ps
ahanix platinum xp steel case
windows xp home

[NeoStarO1]

Hi Wayne,

Open your main Internet Security Panel
Click on Options and select Internet Security.
Click the firewall tab.
In middle section you'll see HTTP Port List.
Scroll through this list and see if those numbers you want to block are listed. If they are remove them and then try your sheilds up scan again.

If this does not remedy your problem let me know and I'll continue to research it.

I use NIS03 and wouldn't switch to anything else at this time.

[waynezo]

I was able to create a rule under firewall general rules to block ports 1024-1030 previously and when I went to the http list they weren't there. machine is stealthed ok now. Thanks for the info!

[NeoStarO1]

Great to know! Glad you got it resolved.

[waynezo]

Now when i run common port scan with shields up port 1025 is open and i get alert for netspy trojan from grc (probably part of shields up test).Even though i have added an individual rule to block port 1025. Is there any other way to block this port? Can i run zone alarm in addition to NIS?

[SeanC]

I wouldn't recommend running two firewall softwares at the same time. They will mess up your system. You could uninstall Norton and install Zonealarm. The guy that wrote the Shieldsup test recommends Zone Alarm over all the other software firewalls.

Sean

[NeoStarO1]

You know, I get tired of people telling people to trash one program for another. How about recommending solutions rather than a copped statement about the firewalls being dumped. Everyone has thier own personal firewall preferences.

As for running two firewalls Yes its NOT recommended. Even if you run XP with its build in firewall its best to disable that so the main firewall program can be the ruling program.

Try adding and putting just port 1025 as a rule and see what happens. It takes time to learn NIS. I been using NIS for about 3 years now and I have never had a problem. All of these ports are blocked so not sure what the problem is with yours.

I'll check into it later today and get back to you.

[woodbutcher]

I use NIS03 and wouldn't switch to anything else at this time.

One thing that I can say about ZA pro is the fact that all ports by default are to the "stealthed" mode without having to configure the firewall.
When the MSBlast was first appearing I checked the first 1035 ports at Shields Up and all was good.

ZA pro is IMHO the best firewall out there.

WB

EDIT, BTW Neo, i'm by no means suggesting to dump one prog for another.
Not being all that knowledgeable about firewalls to begin with it was nice to have ZA working in the background without having to worry about "tweaking" the app.