[prev in list] [next in list] [prev in thread] [next in thread]
List: blackicedefender-issues
Subject: Re: [BIDissues] Problems after update
From: "Tor Rognmo" <tor () nq ! com>
Date: 2001-10-17 0:31:26
[Download RAW message or body]
When I first purchased BID there was no server version available but I was told that \
it would work on our windows 2000 server, which it did and has done since. However it \
needs some configuration if you want to run a web, mail, ftp and/or DNS server behind \
it. The settings are done manually in firewall.ini. These are the ones I was given \
and that have worked fine. Port 110 and 25 are required for a mail server, at least \
if you are providing mail relay/smtp, port 80 is of course for a web server, port 20 \
and 21 for ftp and port 53 for DNS. In addition, if you running a DNS server you may \
need to add an ACCEPT line also to the [MANUAL UDP low REJECT] area. As for blocked \
addresses appearing and disappearing, I've had a few now you see them now you don't \
experiences - as if the ini file is dynamic and resets itself to default now and \
then. (Which it probably would do if you did an upgrade.) So I maintain a weekly good \
backup of that file and restore it if needed. Tor
[MANUAL TCP low REJECT]
REJECT, 0 - 1023, default, 2001-08-28 00:48:55, PERPETUAL, 1500, BIgui
ACCEPT, 113, identd, 1999-07-19 20:50:26, PERPETUAL, 2000, unknown
REJECT, 139, SMB, 2001-08-28 00:48:55, PERPETUAL, 4000, BIgui
ACCEPT, 20, FTP-data, 1999-07-22 20:26:53, PERPETUAL, 2000, unknown
ACCEPT, 21, FTP-control, 1999-07-22 20:26:53, PERPETUAL, 2000, unknown
ACCEPT, 80, HTTP, 1999-07-22 20:26:53, PERPETUAL, 2000, unknown
ACCEPT, 25, POP, 1999-07-22 20:26:53, PERPETUAL, 2000, unknown
ACCEPT, 110, SMTP, 1999-07-22 20:26:53, PERPETUAL, 2000, unknown
ACCEPT, 53, DNS, 1999-07-22 20:26:53, PERPETUAL, 2000, unknown
From: jmartin@offshoredata.com
To: bidissues@yahoogroups.com
Sent: Tuesday, October 16, 2001 12:31 PM
Subject: [BIDissues] Problems after update
Hi:
We updated BID a weeks ago. It was running on our NT mail server. In
doing some checking I noticed there was a server version, but could
not tell if we actually needed it since the existing version had been
working well.
Meanwhile, subsequent to the update I noticed some banned IP addresses
had vanished, and other settings appeared inconsistent as well. But
it seemed to change from day to day. Finally, one day it started
bouncing all e-mail traffic so we just shut it down.
Just in the way of history... When we originally bought BID it did not
have it's own GUI for settings-- you either had to edit an INI file or
use FWC. But I do not recall having to do anything unusual for that
NT box to function as a mail server.
I don't know if we should scrap the current install; reinstall from
scratch; and setup the settings from scratch. (and do things have to
be explicitly set up now that were automatic before?) Or:
Get the server version. Or:
Get Zone Alarm or some other product.
Any suggestions and comments would be very welcome.
Thanks--Jim
To Post a message, send it to: bidissues@eGroups.com
To Unsubscribe, send a blank message to: bidissues-unsubscribe@eGroups.com
Your use of Yahoo! Groups is subject to the Yahoo! Terms of Service.
[Attachment #3 (text/html)]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 6.00.2600.0" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>When I first purchased BID there was no server
version available but I was told that it would work on our windows 2000 server,
which it did and has done since. However it needs some configuration if you want
to run a web, mail, ftp and/or DNS server behind it. The settings are done
manually in firewall.ini. These are the ones I was given and that have worked
fine. Port 110 and 25 are required for a mail server, at least if you are
providing mail relay/smtp, port 80 is of course for a web server, port 20 and 21
for ftp and port 53 for DNS. In addition, if you running a DNS server you may
need to add an ACCEPT line also to the [MANUAL UDP low REJECT]
area.</FONT></DIV>
<DIV><FONT face=Arial size=2>As for blocked addresses appearing and
disappearing, I've had a few now you see them now you don't experiences - as if
the ini file is dynamic and resets itself to default now and then. (Which it
probably would do if you did an upgrade.) So I maintain a weekly good backup of
that file and restore it if needed.</FONT></DIV>
<DIV><FONT face=Arial size=2>Tor</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>[MANUAL TCP low REJECT]<BR>REJECT, 0 - 1023,
default, 2001-08-28 00:48:55, PERPETUAL, 1500, BIgui<BR>ACCEPT, 113, identd,
1999-07-19 20:50:26, PERPETUAL, 2000, unknown<BR>REJECT, 139, SMB, 2001-08-28
00:48:55, PERPETUAL, 4000, BIgui<BR>ACCEPT, 20, FTP-data, 1999-07-22 20:26:53,
PERPETUAL, 2000, unknown<BR>ACCEPT, 21, FTP-control, 1999-07-22 20:26:53,
PERPETUAL, 2000, unknown<BR>ACCEPT, 80, HTTP, 1999-07-22 20:26:53, PERPETUAL,
2000, unknown<BR>ACCEPT, 25, POP, 1999-07-22 20:26:53, PERPETUAL, 2000,
unknown<BR>ACCEPT, 110, SMTP, 1999-07-22 20:26:53, PERPETUAL, 2000,
unknown<BR>ACCEPT, 53, DNS, 1999-07-22 20:26:53, PERPETUAL, 2000,
unknown</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><B>From:</B> <A title=jmartin@offshoredata.com
href="mailto:jmartin@offshoredata.com">jmartin@offshoredata.com</A> </DIV>
<BLOCKQUOTE
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 \
2px solid; MARGIN-RIGHT: 0px"> <DIV style="FONT: 10pt arial"><B>To:</B> <A \
title=bidissues@yahoogroups.com \
href="mailto:bidissues@yahoogroups.com">bidissues@yahoogroups.com</A> </DIV> <DIV \
style="FONT: 10pt arial"><B>Sent:</B> Tuesday, October 16, 2001 12:31 PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> [BIDissues] Problems after
update</DIV>
<DIV><BR></DIV><TT>Hi:<BR><BR>We updated BID a weeks ago. It was running on
our NT mail server. In<BR>doing some checking I noticed there was a server
version, but could<BR>not tell if we actually needed it since the existing
version had been<BR>working well.<BR><BR>Meanwhile, subsequent to the update I
noticed some banned IP addresses<BR>had vanished, and other settings appeared
inconsistent as well. But<BR>it seemed to change from day to day.
Finally, one day it started<BR>bouncing all e-mail traffic so we just shut it
down. <BR><BR>Just in the way of history... When we originally bought
BID it did not<BR>have it's own GUI for settings-- you either had to edit an
INI file or<BR>use FWC. But I do not recall having to do anything
unusual for that<BR>NT box to function as a mail server.<BR><BR>I don't know
if we should scrap the current install; reinstall from<BR>scratch; and setup
the settings from scratch. (and do things have to<BR>be explicitly set up now
that were automatic before?) Or:<BR><BR>Get the server version. Or:<BR>Get
Zone Alarm or some other product.<BR><BR>Any suggestions and comments would be
very welcome.<BR><BR>Thanks--Jim<BR></TT><BR><TT>To Post a message, send it
to: bidissues@eGroups.com<BR>To Unsubscribe, send a blank message
to: bidissues-unsubscribe@eGroups.com</TT> <BR><BR><TT>Your use of Yahoo!
Groups is subject to the <A href="http://docs.yahoo.com/info/terms/">Yahoo!
Terms of Service</A>.</TT> <BR></BLOCKQUOTE>
<br>
<tt>
To Post a message, send it to: bidissues@eGroups.com<BR>
To Unsubscribe, send a blank message to: bidissues-unsubscribe@eGroups.com</tt>
<br>
<br>
<tt>Your use of Yahoo! Groups is subject to the <a \
href="http://docs.yahoo.com/info/terms/">Yahoo! Terms of Service</a>.</tt> </br>
</BODY></HTML>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic