Re: Ports 256,257,258 open on FW-1

["mark s. kassem" <msk () bwbr com>]

John,

If you want to manage your FW-1 box from the Internet you realistically only
need port 258 open.  The others are there for logging and fw to fw
communication.

256 is FW1 Control Port
257 is FW1 Log port
258 is FW1 Management Port
259 is FW1 Client Authentication Port

You can turn those off in your porperties sheet window. The option is called
"Firewall-1 control connection" I believe under the Security Tab.

Good luck
//msk
-----Original Message-----
From: John Lauderdale <hkit () hk super net>
To: firewall-wizards () nfr net <firewall-wizards () nfr net>
Date: Friday, December 11, 1998 1:27 PM
Subject: Ports 256,257,258 open on FW-1


> I notice that ports 256,257,and 258 are open when our Firewall-1 is
> portscanned.
>
> Does anyone know what FW-1 uses these ports for?
>
> Should those ports be visible from the Internet?
>
> Regards,
> John