Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Services "Any" ?
- Thread starter techpearl
- Start date
If the rule was S=any and D=any and Sv=any, then it would mean that anyone could go anywhere using any port, with the exception of X-11, which needs to be put in it's own rule, as a security measure.
So if the service was going out port 80 and coming back in port 81, then is should be fine. However, the above rule is not the most secure. We will create a custom service for instances like that. We use the tracker/log file to find out what is being dropped or not.
So if the service was going out port 80 and coming back in port 81, then is should be fine. However, the above rule is not the most secure. We will create a custom service for instances like that. We use the tracker/log file to find out what is being dropped or not.
Netwontwork
MIS
ASFAIK, Services will only be included as "any" if they're marked to be included as "any".
So choosing "any" as a Service won't necessarily include all TCP/UDP ports as one might expect.
So choosing "any" as a Service won't necessarily include all TCP/UDP ports as one might expect.
- Status
Similar threads
- Locked
- Helpful tip
- Locked
- Question