LinuxQuestions.org
Review your favorite Linux distribution.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Networking
Reload this Page port block of blaster
User Name
Password
Linux - Networking This forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.

Notices


Reply
  Search this Thread
Old 08-31-2005, 03:51 PM   #1
alvi2
Member
 
Registered: Feb 2005
Posts: 77

Rep: Reputation: 15
Question port block of blaster

dear using squid with iptables
now all of my clients using win2000
all clients infected of automatic reboot after 60 second
but if one unplug the network cable then no reboot

so this virus attack from internet from my gateway
can someone tell me how can i block the attack of this thread
block tcp port but which one
.....
 
Old 08-31-2005, 04:52 PM   #2
Matir
LQ Guru
 
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507

Rep: Reputation: 128Reputation: 128
The relevant ports are TCP/4444, TCP/135, and UDP/69. W32.Blaster is SO old, however. You should have patched the clients LONG ago. Additionally, any decent firewall would've kept it out in the first place (unless it got loose on the LAN).
 
Old 08-31-2005, 05:00 PM   #3
alvi2
Member
 
Registered: Feb 2005
Posts: 77

Original Poster
Rep: Reputation: 15
latest anti virus (norton) is installed on each client as well as patch of this is also install from microsoft site but again and again attack
so also tell me are these ports are working mean if i block from the linux mechine then in future my clients will not distrub from this blaster
or need some extra care
 
Old 08-31-2005, 05:07 PM   #4
Matir
LQ Guru
 
Registered: Nov 2004
Location: San Jose, CA
Distribution: Debian, Arch
Posts: 8,507

Rep: Reputation: 128Reputation: 128
If you block those ports, it will protect the machines from the outside, but if you have infected computers behind the firewall, you have to clean those up. Has the antivirus confirmed the infection to be blaster?
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
block telnet port 25 yenonn Linux - Security 6 09-30-2005 01:34 AM
How to block a port, such as 21? iclinux Linux - Newbie 3 01-16-2005 12:51 PM
Getting through a port block basketkase999 Linux - Networking 3 12-16-2004 02:58 PM
block telnet to port 80 neil Linux - Security 4 07-01-2004 06:23 AM
How to tell if my ISP block port 25? jme Linux - Networking 9 05-30-2004 03:27 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Networking

All times are GMT -5. The time now is 08:01 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration