Quantcast
Channel: Security forum
Viewing all articles
Browse latest Browse all 12072

DMZ Server Firewall

$
0
0

Dear all,

Some months ago we have deployed and lync edge server on our DMZ zone with public ip's direclty attached to this server based on microsoft recomendations(our network supports company disagreed on this). This server was not joined to domain and only nesesary ports was opened on firewall apliance(fortigate) to lync server and only nesesary ports was open to public world on windows microsoft firewall. Today accidentaly i noticed that i could ping one of the lync edge servers public ips. I was sure that this was not right cause i remember i have closed everything. I login to lync edge dmz server and i noticed that ping was open i then close the ping and remote desktop on firewall. Even after i did this the server is still visible to outside world, then i checked that for some strange reason all ports are opened, even file sharing, very funny. I tried to find any strange program, service, i  did netstat -nb, i did not found anything strange, no erors on event viewer. Now what ever seeting i put on inbound rules on firewall, everything remains opens. The firewall service looks to work as expected but it doesnot. I have disabled  the public interface for now. Does anyone have any idea what is going on here? Thanks in advanced for any help


MCSE, MCTS, VCP, AIS, MCITP


Viewing all articles
Browse latest Browse all 12072

Trending Articles



<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>