Permitted IP protocols (Windows)

Module: Network Integrity

Supported Platforms: Windows 2000, Windows 2003, Windows 2008, Windows Vista, Windows XP

This check reports permitted IP protocol numbers. Specify the numbers of protocols that you want to examine in the name list. To specify a range, use a hyphen. For example, 100-255 specifies protocol numbers 100 through 255. Valid protocol numbers are 1-255. The file %SYSTEMROOT%\system32\drivers\etc\protocol maps protocol names to protocol numbers. Filtering out unneeded protocols increases security.

The following table lists the error message for the check.

Table: Error message for Permitted IP protocols

Message String ID and Category

Platform and Message Numeric ID

Message Title and Description

Additional Information

String ID: ESM_ALLOWED_PORT_OR_PROTOCOL

Category: Change Notification

  • Windows 2000 (106343)

  • Windows 2003 (206343)

  • Windows 2008 (249343)

  • Windows Vista (229343)

  • Windows XP (201343)

Title: Port or protocol is permitted

Description:The system permits connections through the reported protocol or port.

Severity: yellow-1

Correctable: false

Snapshot Updatable: false

Template Updatable: false

Information Field Format: [Adapter: %s]