Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a programmer that wants me to open outbound port 2401 udp & tcp - does anyone have any security concerns with this? If so, why? and if you have any supporting articles or documents. Thank you!
I thought that the 192.x.x.x ip addresses were supposed to be non-routable on the internet? I get a ton of UDP Packet sig 4000 sub sig 69 from source addresses of 192.x.x.x. They actually just started today. Does anyone know the answer to the 1st ...
I am interested in other Security tech's opinion and policy on allowing outbound ICMP traffic through a firewall to the internet - to do or not to do? That is the question.And why. And if you have any supporting documentation links to your opinion ...
if you search your config - you should see that it is a grouping of objects. The system creates them for you if you put more than 1 object on a rule. For example, if your rule is src1 to dest1&2 port xx Then you will have an object group network dm...
We use exchange internal - the dmz frontend server to internal exchange for us is accessed via a browser url that uses https - the user then logs in authenticating to Active Directory. If this is your configuration - then from the internet to the dm...
Thank you!And what you described about the PIX / pat & the internal box with a source port of 69 - was probably exactly what happened - we got hammered for about 1 1/2 hours & then nothing - so the user probably turned their system off.
I was directing the disk space answer (9GBs) towards the IDS itself - not the CSPM NT server. If you telnet or ssh to the IDS as netrangr - cd bin - run nrstatus - does it show your services are running there? If not, cd to the /usr/nr/var director...
I don't know of any good documentation - but when I set up a cloud network outside of my private network - I click on the Internet object - click new cloud network - put in the ip address of the subnet - so if you sensor's ip address is 2xx.3xx.4x.5 ...
