RE: NetScreen XP and NetMeeting

From: Gunn, Jeff (Jeff.Gunn@FMR.COM)
Date: 12/12/02

  • Next message: Gene: "Re: File Monitoring Program" 
    From: "Gunn, Jeff" <Jeff.Gunn@FMR.COM>
To: "'security-basics@lists.securityfocus.com'" <security-basics@lists.securityfocus.com>
Date: Thu, 12 Dec 2002 13:41:11 -0500

    Let me preface this by saying I know nothing about Netmeeting, but I've had
    to set up similar services through firewall devices. ;)

    Are you a client connecting to the internet through a firewall and trying to
    establish a netmeeting connection, or are you setting up a Netmeeting server
    for other people to get to? The article seems to be aimed at an end-user
    who is trying to configure a personal firewall to allow Netmeeting
    connections out.

    The big scary-looking range of ports (1024-65535) are outbound UDP ports,
    which is a very common requirement. A lot of firewalls allow this by
    default because it can be (sometimes incorrectly) assumed that a connection
    originating from behind the firewall going out to the internet should be
    allowed.

    If you are trying to set up a server for other people to connect into,
    though, your requirements will probably be different. I could be reading it
    wrong, but it doesn't seem like the article from MS really adresses that.

            -Jeff

    > -----Original Message-----
    > From: Sarbjit Singh Gill [mailto:ssgill@gilltechnologies.com]
    > Sent: Wednesday, December 11, 2002 2:37 PM
    > To: security-basics@lists.securityfocus.com
    > Subject: NetScreen XP and NetMeeting
    >
    >
    > Greetings,
    >
    > As the subject goes, i need to get net meeting to work via
    > NetScreen. I
    > found a KB
    > article(http://support.microsoft.com/default.aspx?scid=kb;en-u
    > s;158623) but
    > it seems to show, i had to open a whole range of ports. I am
    > skeptical about
    > that!
    >
    > e.g..
    > Pass through primary TCP connections on ports 522, 389, 1503,
    > 1720 and 1731.
    > Pass through secondary UDP connections on dynamically assigned ports
    > (1024-65535).
    >
    > the above shows a whole range of ports that i have to open.
    > Is there a work
    > around.
    >
    > Kind Regards
    > Gill
    >

    Relevant Pages

    • Re: Another VPN Issue...Say it aint so...
      ... click on "Services and Ports." ... Now how can I configure the firewall within ... but this time disable Firewall and redo remote access ... to make sure I get a good snap-in connection and see what goes on?!? ...
      (microsoft.public.windows.server.sbs)
    • Re: WDSC, VPN, and RPG Editing
      ... this) and so it drops the ethernet connection. ... to do with firewalls or other ports. ... do with the firewall on my router and the ports that are/aren't ... workstation to port 446 on the iSeries server. ...
      (comp.sys.ibm.as400.misc)
    • Re: Ping pmj
      ... a software firewall to fill the gaps in or you will get intruders!!! ... Software Firewall, or not Forwarded in your Router), then NetMeeting ... *also* Open up some Ports when receiving Calls. ... Such as VNC ...
      (uk.people.silversurfers)
    • Re: How to Establish NetMeeting Connections Through a Firewall
      ... > firewall or not, and what ports you should pass through ... It does provide information on port usage in NetMeeting but from I can tell ... You said you strongly recommend a software firewall, ... > communication on all the ports described in the article. ...
      (microsoft.public.internet.netmeeting)
    • AdAware, SpyBot S &D, etc. + leave PC connected to Internet
      ... Does it have somehting to dow the Firewall ... with spyware services and adsites, the latter of which can be worse ... What ports are open? ... routers do absolutely zero as far as preventing outbound connection ...
      (comp.security.firewalls)