Packet Filter Policies
52
WatchGuard System Manager
RealPlayerG2
Media streaming protocol v7 and v8.
Characteristics
•
Internet Protocol(s): TCP
•
Port Number(s): 80, 554
Rlogin
Remote login (RLogin) is a UNIX command that allows an approved user to log in to other UNIX
computers on a network. After the login, the user can do all the operations the host has approved, such
as read, edit, or delete files. Because it does not use encryption, we recommend you do not allow
Rlogin connections to computers protected by the Firebox.
Characteristics
•
Internet Protocol(s): TCP
•
Port Number(s): 513
SecurID
RSA SecurID Two-Factor Authentication give more security to the user authentication procedure.
Created by Security Dynamics Technologies, Inc., it uses SecurID tokens to generate codes and ACE/
Server software to corroborate the codes.
Characteristics
•
Internet Protocol(s): TCP and UDP
•
Port Number(s): TCP 5510, UDP 5500
SMB (Windows Networking)
Windows uses Server Message Block (SMB) to share files, computers, printers, and other network
resources.
If you set up replication, you can see many attempts to use the port mapper service on port 135. When
this fails, SMB begins to use port 42. Refer to the RFC for DCE for more instructions.
Characteristics
•
Internet Protocol(s): TCP, UDP
•
Port Number(s): TCP 139, TCP 445, UDP 137, UDP 138, UDP 445
SMB through the Firebox is not secure and we do not recommend it, unless used through a VPN
connection. These configuration settings are to be used only if there is no other alternative, and
policy settings must specify interna
l an
d external hosts.