User Guide
43
Packet Filter Policies
finger
finger is an application protocol used to get information about users on a given host. It is easy for a
hacker to use this information against you. We do not recommend that you put finger servers on the
trusted interface.
Characteristics
•
Internet Protocol(s): TCP
•
Port Number(s): 79
FTP
File Transfer Protocol (FTP) is used to move files across the Internet. An FTP packet filter will not apply
the FTP proxy rule set to any traffic. To proxy FTP traffic, use the FTP proxy policy. We recommend that
incoming FTP be allowed only to public FTP servers located behind the Firebox.
External hosts can be spoofed. WatchGuard cannot verify that these packets were actually sent from
the correct location. You can configure the Firebox to add the source IP address to the Blocked Sites list
whenever an FTP connection to a computer protected by the Firebox is denied. The packet filter and
proxy policy included in WatchGuard Policy Manager both handle the data channel for active and
passive FTP sessions. All of the usual log options can be used with FTP.
Characteristics
•
Internet Protocol(s): TCP
•
Port Number(s): 21
Gopher
Gopher is a data-retrieval protocol developed at the University of Minnesota. Gopher is not frequently
used, as most users use HTML.
Characteristics
•
Internet Protocol(s): TCP
•
Port Number(s): 70, but servers can be configured to use other ports
GRE
Generic Routing Encapsulation Protocol (GRE) is used together with Point-to-Point Tunneling Protocol
(PPTP) to create virtual private networks (VPNs) between clients or between clients and servers.
Characteristics
•
Internet Protocol(s): GRE