I am using sygate. JK -----Original Message----- From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx]On Behalf Of Chris Lynch Sent: Sunday, June 29, 2003 1:34 AM To: thin@xxxxxxxxxxxxx Subject: [THIN] Re: SP4 Gotchas -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 What firewall are you using? Also, with resetting IPSEC policies, I have heard about that on another list. Chris - -----Original Message----- From: thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Jim Kenzig http://thethin.net Sent: Saturday, June 28, 2003 6:57 PM To: thin@xxxxxxxxxxxxx; windows2000@xxxxxxxxxxxxx Well I took the plunge and upgraded thethin.net servers to SP4. I noticed a few immediate problems. 1. it reset and cleared out all of my IPSec settings. I had to reset them and put them back in and reboot again and reenable IPSec. 2. It appears to put SQL 2000 in a vulnerable state to Slammer as I started getting attacked again on port 1433 big time and it was allowing packets in and out through my firewall. (how 1433 got opened again in the firewall is totally bizarre to me also) IPSec does not seem to be working properly as I am only allowing Port 80, 21 and 25 and 1433 is still getting through? WTF? Anyone else experience this? Anyone have any ideas? It is a software firewall so I will probably have to zero out the app settings and start from scratch again. At least the webservices, SQL database and cold fusion made it through and appear to be working properly. Regards, JK ******************************************************** This weeks sponsor - RTOSoft TScale Complaints about applications response time - DO SOMETHING ABOUT IT! TScale 2.0 improves applications response time and increases terminal server capacity. Really get MORE from your existing servers! Free eval: http://www.rtosoft.com/enter.asp?id=130 ********************************************************** Useful Thin Client Computing Links are available at: http://thethin.net/links.cfm For Archives, to Unsubscribe, Subscribe or set Digest or Vacation mode use the below link: http://thethin.net/citrixlist.cfm