"Matt Woodyard" <matt.woody***@gmail.com> wrote in message
news:1144344011.107674.87970@v46g2000cwv.googlegroups.com...
> You can set the various IIS processes(web/ftp) to serve content only on
> specific
> iterfaces(ie. localhost only, only one of IPs on a machine), is there a
> way to apply this type of setting to the IISAdmin service? Can I run
> IIS(publish
> content) without running the IISAdmin Service(or providing  access to
> it from other hosts by binding IISAdmin to localhost)?
>

"Matt Woodyard" <matt.woody***@gmail.com> wrote in message
news:1144900776.628692.179360@i40g2000cwc.googlegroups.com...
> If it is just a local service then why does a port scan reveal a 5
> ports for a server that should only be publishing content on port
> 80/443/admin site port? The host responds (and netstat -anp reveals the
> responding service is inetinfo.exe) on a tcp port and a udp port that
> are randomly assigned. This is not at all local, or at least not in my
> config.
>

"Matt Woodyard" <matt.woody***@gmail.com> wrote in message
news:1144957362.732026.116840@t31g2000cwb.googlegroups.com...
> This is correct. Since those ports are not needed for website content
> services, I would like to make them 'go away'(not be available on any
> host other than localhost). In unix land this would be trivially
> accomplished by editting the apache config and setting Listen
> 127.0.0.1:80 (or whatever, since apache doesn't use RPC the analogy
> doesnt really hold completely). So it sounds as if I'm going to run an
> IIS server I'm just going to have accept that a webserver running
> content on 1 port(80) will require 2 ports that simply increase our
> internal exposure?
>

"Matt Woodyard" <matt.woody***@gmail.com> wrote in message
news:1145045854.310374.215320@v46g2000cwv.googlegroups.com...
> Yeah, I understand that its a different software, just trying to draw a
> parallel, and it sounds like there is none, and the we'll just have to
> accept this exposure on our network. Thanks for the help.
>
> Matt
>