Some ports I think you shouldn't allow to be accessed remotely in a production environment are 21 (ftp), 22 (ssh or sftp), 23 (telnet), 110 (pop), 995 (pops), 992 (telnets), 5000+ (remote admin, teamviewer, etc) and any other ports that allow administration, modification, or write-capable transfers.
Any other ports you all think, should be blocked for remote access?
Also, if you had a production server, what ports would you allow?
I would drop all and then explicitly list ports based on when the connection is new or established.
This post has been edited by macb6497: 21 August 2012 - 08:06 AM