Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
716
Views
3
Helpful
2
Replies

DCE RPC Handling on ASA - how to specify Universal Unique Identifier UUID

k.kaswurm
Level 1
Level 1

‎10-03-2006 02:10 AM - edited ‎02-21-2020 01:12 AM

Hi,

although googling, searching cisco.com, cisco npc and so on I didn?t find a way to specify the DCE-RPC UUID to create an ACL permitting only certain DCE-RPC service through an ASA (and denying othes) e.g. allow: 469d6ec0-0d87-11ce-b13f-00aa003bac6c MS Exchange System Attendant Public Interface

and deny

a4f1db00-ca47-1067-b31e-00dd010662da Exchange Server STORE ADMIN Interface

thanks for your support

0 Helpful
2 Replies 2

mmorris11
Level 4
Level 4

‎10-04-2006 07:02 AM

This would require the ACL technology to support DCE-RPC UUID as a criteria in the acl which AFAIK it does not. It would be cool for not only ACLs but for netflow to support this as well. Maybe someone at Cisco is listening ;)

k.kaswurm
Level 1
Level 1
In response to mmorris11

‎10-06-2006 09:32 AM

the question is:

what does DCERPC Inspect Map do because I think it should be found somewhere there and if I can not specify specific UUIDs at all - what is the meaning of that all?

similar to e.g:

"Service ID?Displays the SunRPC program number, or service ID, allowed to traverse the security appliance." and "Configuration > Properties > SUNRPC Server > Add/Edit SUNRPC Service" in the ADSM Manager

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card