Re: [Efw-user] Port 53 open
Thanks Peter This makes sense. We have a Cisco router between the firewall and the internet. It's one that our ISP provided us. Cheers Al On 02/05/07, Peter Warasin <[EMAIL PROTECTED]> wrote: Hi guys Dave wrote: > Typically yes, 53 ought to be closed off on RED. At least insofar as it forwards > requests to an internal IP (unless that's the plan). > > If Endian is your gateway it's likely looking up IP's for your network so > clients can resolve domains. I'm not certain on that...perhaps someone else > in the group can comment. Endian Firewall does not open any port as long as you do not forward the port, as dave already told and as long as you don't explicitely open the port with "external access". Probably there is another device between the scan service you used and the firewall, which has the port open to the public. Maybe a modem or router on your or on the ISP's side. peter -- :: e n d i a n :: open source - open minds :: peter warasin :: http://www.endian.com :: [EMAIL PROTECTED] - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Port 53 open
Hi guys Dave wrote: > Typically yes, 53 ought to be closed off on RED. At least insofar as it > forwards > requests to an internal IP (unless that's the plan). > > If Endian is your gateway it's likely looking up IP's for your network so > clients can resolve domains. I'm not certain on that...perhaps someone else > in the group can comment. Endian Firewall does not open any port as long as you do not forward the port, as dave already told and as long as you don't explicitely open the port with "external access". Probably there is another device between the scan service you used and the firewall, which has the port open to the public. Maybe a modem or router on your or on the ISP's side. peter -- :: e n d i a n :: open source - open minds :: peter warasin :: http://www.endian.com :: [EMAIL PROTECTED] begin:vcard fn:Peter Warasin n:;Peter Warasin org:Endian GmbH/Srl adr:;;Pillhof 47;Frangart/Frangarto;BZ;I-39010;Italien/Italia email;internet:[EMAIL PROTECTED] tel;work:+39 0471 631763 tel;fax:+39 0471 631764 x-mozilla-html:FALSE url:http://www.endian.com version:2.1 end:vcard - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Port 53 open
Hi Al, No need to be sorry. We are all at learning here together. Typically yes, 53 ought to be closed off on RED. At least insofar as it forwards requests to an internal IP (unless that's the plan). If Endian is your gateway it's likely looking up IP's for your network so clients can resolve domains. I'm not certain on that...perhaps someone else in the group can comment. -Dave - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Port 53 open
Thanks Dave Sorry for my ignorance, but why would it need to be open on port 53? Doesn't it only need to allow outbound connections? Cheers Al On 01/05/07, Dave <[EMAIL PROTECTED]> wrote: DNS is port 53. Al <[EMAIL PROTECTED]> writes: > > I did a port scan on my PC using grc.com's Shields UP service.It found that my port 53 is open. Is this normal? I can't see anything in the firewall config that would open port 53. > > > - > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > > ___ > Efw-user mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/efw-user > - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
Re: [Efw-user] Port 53 open
DNS is port 53. Al <[EMAIL PROTECTED]> writes: > > I did a port scan on my PC using grc.com's Shields UP service.It found that my port 53 is open. Is this normal? I can't see anything in the firewall config that would open port 53. > > > - > This SF.net email is sponsored by DB2 Express > Download DB2 Express C - the FREE version of DB2 express and take > control of your XML. No limits. Just data. Click to get it now. > http://sourceforge.net/powerbar/db2/ > > ___ > Efw-user mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/efw-user > - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ ___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user
[Efw-user] Port 53 open
I did a port scan on my PC using grc.com's Shields UP service. It found that my port 53 is open. Is this normal? I can't see anything in the firewall config that would open port 53. - This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/___ Efw-user mailing list Efw-user@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/efw-user