Hi guys, fyi pop3 is port 110, not 25, smtp.
As i think has been alluded to, block everything, then open up ports as you
need based on what services you require. There are valid reasons for
allowing icmp and other inbound in subject to some shaping, but then there
are great reasons to block it. Again, what you're trying to achieve will
dictate the policies. So, what are you trying to achieve? What services do
you require?
my thoughts.byron
-----Original Message-----
From: Manuel Fernandes [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 06, 2001 4:22 PM
To: 'Reyes, Roy'
Cc: [EMAIL PROTECTED]
Subject: RE: Common Firewall Settings
This is an awesome ICSA certified and cheap product to use:
http://www.zyxel.com/product/dslcablesharing/p312.htm A little tricky to
install but once you've figured it out, leave it and let it do it's job :)
Or try this, you might like it: http://www.tinysoftware.com/winpro.php It's
ICSA certified too!
Good resource:
http://www.icsalabs.com/html/communities/firewalls/certification/vendors/ind
ex.shtml
-----Original Message-----
From: Manuel Fernandes [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 06, 2001 3:51 PM
To: Reyes, Roy
Subject: RE: Common Firewall Settings
The best would be to block ICMP but then if you want to test the ping
command it will not work. However, packets will reach defined destinations
via assigned ports. example:
External Internal
150.1.1.1 - 10.1.1.1 port 80, 443
150.1.1.1 - 10.1.1.2 port 25
150.1.1.1 - 10.1.1.3 port 21
Good luck!!!
PS: BTW, what firewal product are you configuring?
-----Original Message-----
From: Reyes, Roy [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 06, 2001 3:49 PM
To: Manuel Fernandes
Subject: RE: Common Firewall Settings
Are you saying that these are the most common ports that are allowed? How
about SMTP (port 25) or ICMP? Are they usually blocked? Thanks again.
-----Original Message-----
From: Manuel Fernandes [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 06, 2001 3:39 PM
To: Reyes, Roy
Subject: RE: Common Firewall Settings
Most common ports...
PORT DESC NO
========= ==
HTTP 80
SSL 443
FTP 21
POP3 25
-----Original Message-----
From: Reyes, Roy [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, March 06, 2001 3:32 PM
To: [EMAIL PROTECTED]
Subject: Common Firewall Settings
I'm installing a firewall on a small LAN, and I'm trying to set-up my policy
setting. Can anyone tell me what the standard/common settings for a
firewall are? Basically, which protocols/ports are usually left open and
which are turned off as standard practice? I would appreciate all the help
anyone can offer me. Thanks.
Roy
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
