Server registration options

  1. This system does not need to be contacted from off campus (No ports open): This computer will not act like a server and does not need to be accessed from off-campus.
  2. This system needs secure remote access from off campus (SSH open): Computers from off-campus will connect to this computer using the secure shell protocol (TCP 22). Please note that the ssh service is one of the most probed and attacked ports from computers off-campus. Unless you need to give access to non-UCI affiliates, you would be better off using the campus VPN service to gain SSH to your system rather than opening the port. Many of the attacks against these services use account and password brute-force methods that may at some point give access to your system to the attackers if any of your users has a easily guessed accounts and/or passwords.If you need to give RDP access to people who cannot use the campus VPN service, we suggest you configure RDP to use a port other than 3389 and use the “I would like to specify which ports to open” option to open only that port for off-campus access. This will help prevent (but not eliminate) RDP probes and attacks against your system.
  3. This system is a server. I run my own firewall or have taken other security precautions (Warning, all ports will be open): This is the best choice for users who need 5 or more ports open on a computer. Computers that require this many open ports should be carefully managed by the individual user or supporter and not rely on the campus firewall as the only means of protection.
  4. I would like to specify which ports to open (Advanced): This is the best choice for users who need fewer than 5 ports open and want more control over off-campus access to their computer. You may choose from a list of default ports, or enter your own specific TCP/UDP port numbers. (Please note: There are certain ports that cannot be opened (Visit: Are there ports that cannot be registered?) for more information.)