Protect old Legacy systems - how to secure old Windows Servers

we have some older Windows Servers, which are still used for specific software only Run on Windows 2008 servers.
Now we want to protect the servers in the network und created already a own vlan.

We have done a firewall policy which is blocking all tcp and udp ports from 1-65535 from internal to external.

Now my question is, can I additionally configure something on the firebox to secure the old legacy servers?

Or what would you recommend to protect the old servers in our network in general?

Thanks and regards,


  • james.carsonjames.carson Moderator, WatchGuard Representative

    Hi @yoface
    All of the endpoint software WatchGuard and Panda provide are designed to run on supported operating systems. With rare exception, this will generally follow what is currently supported by Microsoft and Apple, respectively.

    Aside from locking down ports that aren't needed and potentially placing that server in a DMZ area where traffic must traverse the firewall to get to/from it's source, I would suggest either eventually upgrading or retiring that server.

    -James Carson
    WatchGuard Customer Support

Sign In to comment.