How do I block port 1080 ?

[zerosandones]

We'd like to block port 1080 using our PIX firewall.

I thought I was on the right track with "conduit deny" as follows:

conduit deny tcp any any eq 1080

and

conduit deny udp any any eq 1080

but, Morpheus keeps on coming through.

Thanks in advance for your help.

0000011111

 

[yizhar]

HI.

What is the version of the pix?

Conduit normaly works for inbound connections, so you should try using access-list instead, or outbound and apply for old versions of the pix (4.x).

BTW - with conduit, the destination is the first parameter:
conduit deny tcp any eq 1080 any

If you wish to control outbound ports access, I suggest that you only allow what you want, instead of blocking specific ports. That way you'll end up with a more secure, efficient and logical access-list.

Bye
Yizhar Hurwitz

http://come.to/yizhar

http://teachers.sivan.co.il/yizhar

 

[zerosandones]

Thank you for the speedy reply.

The PIX 515 is verion 4.4(8).

Actually, the syntax I used first was as you stated i.e.

conduit deny tcp any eq 1080 any

but it still did not block access to 1080.

If I understand you correctly, I need to positively identify which outbound access I will allow as opposed to defining which outbound access I want to deny using Access Lists. Is this correct?

Thanks again for the help.

0000011111

 

[yizhar]

HI.

Look here:

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v44/pix44cfg/pix44cfg.htm#xtocid44

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_v44/pix44cfg/pix44cmd.htm#xtocid31

Bye
Yizhar Hurwitz

http://come.to/yizhar

http://teachers.sivan.co.il/yizhar

 

[zerosandones]

Thanks Yizhar,

I'll use these references to hunt down the solution.

zerosandones