Ethical Hacking

There are 3 basic firewalls available on windows 2003 Server

TCP/IP Filtering
- configured on all adapters or none
- ONLY the ports listed are allowed

ICF - Internet connection firewall
- Blocks all externally initiated traffic
- Open ports to allow external traffic in and out

Packet Filtering
- Available in the RRAS console
- Can specify input and output filters, for individual NICS
- ingress filtering prevents malicious attacks like address spoofing

Proxy servers speed up web access and restrict access to the internet
Proxy Settings can be automatically or manually configured
Edit the services file to allow Windows 2003 server to recognise non standard ports
FTP uses TCP not UDP as it's transport protocol

Packet filtering are rules defined for a particular interface that allow or restrict traffic by source address, destination address, direction, or protocol type.
You can think of packet filters as holes in your firewall to allow external clients access to specific internal resources.

Transport layers are TCP and UDP protocolsTCP is connection oriented which means packets of data flow are being delivered in a reliable way it resends data if there is a data collision or there are any errors - this is known as "guranteed delivery."

UDP is connectionless and it sends data packets through the internet at maximum speed, no form of control when data is sent over the internet, conecerned with speed e.g streaming videos, webpages, database information etc

HTTP - 80 Application layer
SSL - 443 TCP port
SNMP - simple network mangement protocol used to provide information to TCP/IP hosts.
FTP -21 Only basic Authentication allowed port 20=data port 21=control (Application layer)
POP - 110 TCP Port
DNS - Port 53 UDP Port query TCP Port 53 Zone Transfer 53.
PPTP - Point to point Tunneling protocol TCP Port 1723 Protocol Number 47
ARP, ICMP. IP (Internet layer)