port security

Discussion in 'OT Technology' started by MattR2, Sep 26, 2006.

  1. MattR2

    MattR2 New Member

    Joined:
    Sep 6, 2004
    Messages:
    408
    Likes Received:
    0
    Just curious on your guys' opinions about port security.

    Had this discussion at work about opening up new ports for someone to use citrix web client to connect to their school. The schools site says it needs 80 and shit i dunno 1493 or something two ways tcp.

    Now im wondering if it really requires two way implicit or if its just allow it outbound and then our firewall will allow the appropriate return inbound packets, or if it actually needs to be able to recieve on those ports without first making a outbound connection. However the latter sounds unlikely to me.

    Now this has got me thinking on what real best practices are these days? Does tunneling make a mess of the traditional style of port security or is it still just as relevant?
     
  2. Peyomp

    Peyomp New Member

    Joined:
    Jan 11, 2002
    Messages:
    14,017
    Likes Received:
    0
    You shouldn't need to accept SYNs on 80 or 1493 to use that service. If you do, they suck.
     

Share This Page