Re: Firewall question

From: al (allen@somplace.com)
Date: 03/14/03 

From: "al" <allen@somplace.com>
Date: Fri, 14 Mar 2003 18:33:56 GMT

I know because PIX by default allows every devices from the inside network
to go out.
But we want to close down all ports going out first then allow whatever
necessary traffic out based on our security policy.
Thanks,
Al

"Nobody" <.@.> wrote in message
news:Zapca.1934$945.5902@tor-nn1.netcom.ca...
> I just setup a Cisco PIX 506e firewall. By default it allows smtp 25 to
> pass-through without any issues. The only minor problem that I had was
name
> resolution for my external pop3 server. I solved it by changing the server
> name to it's IP address, that way I didn't have to go and open any
conduits.
>
>
> "al" <allen@somplace.com> wrote in message
> news:_qnca.1901$Wi1.293@newssvr19.news.prodigy.com...
> > Hi all,
> > We will implement a PIX Firewall and we will start by blocking all ports
> > going in and out of the Firewall.
> > We have an email server inside the firewall, tcp port 25 will be open
> coming
> > in to the email server to be able to receive email.
> > The question is which ports do I need to allow going out from the email
> > server so we can send email out since all outgoing ports are currently
> > blocked.
> > Thanks,
> > Al
> >
> >
>
>

Relevant Pages

  • Re: Whats a decent modem/router for tech savy user?
    ... It is not possible to route or deny traffic to specific ports based on the source IP address. ... But it wont route back inside the LAN - needs internal DNS server spoofing. ... Normally, this option should be Enabled, so that an Internet connection will be made automatically, whenever Internet-bound traffic is detected. ... Specifying a Default DMZ Server allows you to set up a computer or server that is available to anyone on the Internet for services that you haven't defined. ...
    (uk.telecom.broadband)
  • Re: Cannot connect to RWW from home PC
    ... That would be the address you need a DNS record for. ... You say "And in the router you need to forward to your external nic IP" ... Still can't telnet to any of your ports at your public ip address. ... Heres' the info for our server: ...
    (microsoft.public.windows.server.sbs)
  • Re: Netopia 3347NWG with Remote Desktop and Remote Web Workplace
    ... Glad you're back in business Greg! ... Ports Closed ... Despite this, Remote Web Workplace DOES WORK now, and Connect to Server ... Exchange BPA updates), ...
    (microsoft.public.windows.server.sbs)
  • Solution -> Re: SSH tunnel question.
    ... change IPS and ports around but that is not a big deal. ... telnet/ftp/rsh open on a server including on the Internet facing ports! ... I will go from the corp desktop to a hop ... through the firewall to the hop ...
    (SSH)
  • Re: Exch2003 front-end questions
    ... all the supported protocol ports must be open on the inner ... communication between the front-end server and the back-end servers. ... lists the ports required for the intranet firewall. ...
    (microsoft.public.isa)