Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

RE: firewall for MS RPC

From: "Bill Royds" <broyds () rogers com>
Date: Sat, 3 Apr 2004 15:59:48 -0500
Thy Symantec Enterprise Firewall (SEF, was formerly called Raptor firewall)
has a proxy for SMB/CIFS that should be able to handle most of the traffic
using MS RPC. It is quite granular about what commands are allowed and what
need to be blocked in the CIFS protocol suite.

-----Original Message-----
From: firewall-wizards-admin () honor icsalabs com
[mailto:firewall-wizards-admin () honor icsalabs com] On Behalf Of Tichomir
Kotek
Sent: March 30, 2004 9:23 AM
To: fw
Subject: [fw-wiz] firewall for MS RPC

Hi All

I'm looking for a solution for firewalling MS RPC protocol
A lot of firewalls can do app. inspection/ proxying of SUN RPC (old
portmapper)
but except the MS ISA proxy none can do MS RPC.
I think it's because of "closed source" nature of MS RPC (nad MS at all :)

I have found closest to firewalling MS RPC is PIX with established command
set,
(you can make ASA accept another connection from/to port/port range after
connection to 135)
but I'd like to ask folks around here :

Is there a firewall/solution/workaround that does it better ?

there are workaround I'm aware of :
1. RPC over HTTP/HTTPS - requires ISS server
2. PPTP/L2TP tunnel with/without IPsec


with regards

        tk
-- 
Tichomír Kotek
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: