Firewall Wizards mailing list archives

Re: MS DCOM & Tunneling TCP/IP

From: Joseph S D Yao <jsdy () cospo osis gov>
Date: Wed, 10 Nov 1999 10:32:57 -0500 (EST)

Microsoft provides a second method for taming DCOM.  It is by means of
TCP/IP tunneling.  By using tunneling, you can implement DCOM calls across
most any TCP port (if allowed by your firewall).  That means if you want to
use DCOM but you're firewall administrator won't allow 135 and a custom
range, you can sneak the DCOM across port 80 - of course this wouldn't work
in a proxy or stateful-inspection situation.


And once you establish the IP tunnel, anything can sneak in or out.  I'm
sure their are crackers out there who just love this solution.

--
Joe Yao                         jsdy () cospo osis gov - Joseph S. D. Yao
COSPO/OSIS Computer Support                                     EMT-B
-----------------------------------------------------------------------
This message is not an official statement of COSPO policies.

Current thread:

MS DCOM & Tunneling TCP/IP Coleman,Clayton L. (Nov 10)
- Re: MS DCOM & Tunneling TCP/IP Joseph S D Yao (Nov 10)
- RE: MS DCOM & Tunneling TCP/IP Phil Cox (Nov 14)