cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
521
Views
0
Helpful
2
Replies

Allowing RPC through a PIX can you permit certain program numbers only ?

markturner
Level 1
Level 1

I can allow inbound access to port 111 which in turn allows inbound embryonic connections for the RPC application. This is a big hole in security.

In CBAC on a router, you can inspect and permit certain RPC program numbers. Is it possible to do this in the PIX firewall ?

Many thanks,

Mark

1 Accepted Solution

Accepted Solutions

scoclayton
Level 7
Level 7

Mark,

Nope, the PIX has no ability (like CBAC) to inspect RPC program numbers. We do offer limited UDP RPC fixup for portmapper and rpcbind exchanges. Hope this helps.

Scott

View solution in original post

2 Replies 2

scoclayton
Level 7
Level 7

Mark,

Nope, the PIX has no ability (like CBAC) to inspect RPC program numbers. We do offer limited UDP RPC fixup for portmapper and rpcbind exchanges. Hope this helps.

Scott

Thanks for the info Scott.

Best regards,

Mark

Review Cisco Networking for a $25 gift card