10-26-2005 11:33 AM - edited 02-20-2020 09:28 PM
There have to be plenty of people who have had to do this before, but I can't seem to find anything on CCO on this. I need to put Windows servers behind an ACL on a router and still permit RPC *without* nailing down the port on the servers (the server people say RPC gets put back to its default config every time they apply a patch). Has anyone done this?
10-27-2005 05:56 PM
please have a look at this microsoft doc:
i guess if you follow the required ports from the doc, it should work.
just wondering if you are going to publish the server for the internet and allowing inbound rpc directly. if so, please reconsider as rpc is extremely "hot" for virus/worm etc.
10-28-2005 01:52 AM
Thanks for the link. The problem is that last part: "RPC Server Programs:
The idea of this is to isolate the servers on their own internal network and have the clients access them through the acl; we definitely don't want to allow any rpc from outside. We want to increase internal security by firewalling critical assets within the corporate network. We're using csa on the servers already but wanted to take all possible precautions.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide