McAfee TSA00M005PAA Processor Guide - Page 87

Using Firewall Protection Firewall configuration Examples of system services that typically require ports to be opened are: • E mail server - You do not need to open a mail server port to receive email. You need to open a port only if the computer running firewall protection acts as an email server. • W  eb server - You do not need to open a web server port to run a web browser. You need to open a port only if the computer running firewall protection acts as a web server. NOTE: An opened service port that does not have an application running on it poses no security threat. However, we recommend that you close unused ports. Standard assignments for system service ports These commonly used standard service ports are listed by default, where you can open or close them: • F ile and Print Sharing • R emote Desktop • R emote Assistance You can add other service ports as needed. Standard service ports for typical system services are: System Service File Transfer Protocol (FTP) Mail Server (IMAP) Mail Server (POP3) Mail Server (SMTP) Microsoft Directory Server (MSFT DS) Microsoft SQL Server (MSFT SQL) Network Time Protocol Port Remote Assistance / Terminal Server (RDP) Remote Procedure Calls (RPC) Secure Web Server (HTTPS) Universal Plug and Play (UPNP) Web Server (HTTP) Windows File Sharing (NETBIOS) Port(s) 20-21 143 110 25 445 1433 123 3389 (same as Remote Assistance and Remote Desktop) 135 443 5000 80 137-139 (same as File and Print Sharing) Firewall configuration Protecting computers from suspicious activity with a firewall involves monitoring network activity to identify applications, IP addresses, and ports, and blocking those that could cause harm. There are two methods of establishing firewall protection: • T he administrator configures firewall settings in a Total Protection Service policy. • E ach client computer user configures firewall settings for their computer. McAfee Total Protection Service Product Guide 87