Firewall Wizards mailing list archives
RE: firewall for MS RPC
From: "Bill Royds" <broyds () rogers com>
Date: Sat, 3 Apr 2004 15:59:48 -0500
Thy Symantec Enterprise Firewall (SEF, was formerly called Raptor firewall) has a proxy for SMB/CIFS that should be able to handle most of the traffic using MS RPC. It is quite granular about what commands are allowed and what need to be blocked in the CIFS protocol suite. -----Original Message----- From: firewall-wizards-admin () honor icsalabs com [mailto:firewall-wizards-admin () honor icsalabs com] On Behalf Of Tichomir Kotek Sent: March 30, 2004 9:23 AM To: fw Subject: [fw-wiz] firewall for MS RPC Hi All I'm looking for a solution for firewalling MS RPC protocol A lot of firewalls can do app. inspection/ proxying of SUN RPC (old portmapper) but except the MS ISA proxy none can do MS RPC. I think it's because of "closed source" nature of MS RPC (nad MS at all :) I have found closest to firewalling MS RPC is PIX with established command set, (you can make ASA accept another connection from/to port/port range after connection to 135) but I'd like to ask folks around here : Is there a firewall/solution/workaround that does it better ? there are workaround I'm aware of : 1. RPC over HTTP/HTTPS - requires ISS server 2. PPTP/L2TP tunnel with/without IPsec with regards tk -- TichomÃr Kotek _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards _______________________________________________ firewall-wizards mailing list firewall-wizards () honor icsalabs com http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- firewall for MS RPC Tichomir Kotek (Apr 03)
- RE: firewall for MS RPC Bill Royds (Apr 05)
- RE: firewall for MS RPC Christopher Lee (Apr 08)
- Re: firewall for MS RPC Shimon Silberschlag (Apr 05)
- <Possible follow-ups>
- RE: firewall for MS RPC Thomas W Shinder (Apr 05)
- RE: firewall for MS RPC Daniel Chemko (Apr 08)
- RE: firewall for MS RPC Thomas W Shinder (Apr 10)
- RE: firewall for MS RPC Bill Royds (Apr 05)