Packet Filter Policies
40
WatchGuard System Manager
Archie
Archie is a search protocol used to find files on FTP servers. We recommend that you use the available
web interfaces to Archie. Search the Internet to find a current list of Archie servers.
External hosts can be spoofed
.
The Firebox cannot make sure that these packets were sent from the
correct location. You can configure your Firebox to add the source IP address to the Blocked Sites list
when an incoming archie connection is denied. You can use all of the usual log options with archie.
Characteristics
•
Internet Protocol(s): UDP
•
Port Number(s): 1525
auth
The Authentication Server protocol (AUTH) is now called the Identification Protocol (IDENT). Refer to
IDENT for more information about this policy.
Characteristics
•
Internet Protocol(s): TCP
•
Port Number(s): 113
BGP
Border Gateway Protocol (BGP) is the routing protocol used across most of the Internet. It is a highly
configurable protocol that can add redundancy to links to and from the Internet for LANs. We
recommend that you use this service only if you have enabled and configured BGP in the dynamic
routing processes in the Fireware® configuration.
Characteristics
•
Internet Protocol(s): TCP
•
Port Number(s): 179
Citrix
Citrix, or Independent Computing Architecture (ICA), is an application protocol used by Citrix software
applications such as Winframe and Metaframe Presentation Server (MPS). Winframe gives access to a
Windows computer from different types of clients that use TCP port 1494. Citrix MPS 3.0 uses ICA with
Session Reliability over TCP port 2598. If you use Citrix MPS, you must add a custom policy for TCP port
2598. If you add the Citrix policy, you could put your network security at risk because it allows remote
access to computers through the firewall without authentication. The threat to a Winframe or MPS
server includes denial-of-service attacks. We recommend that you use VPN options to give more
security for ICA connections. You can use all of the usual log options with WinFrame.
Characteristics
•
Internet Protocol(s): TCP
•
Port Number(s): 1494