Firewall rules for Business Communications Manager with
Dialup interfaces
For systems with dialup interfaces (ISDN, V.90), we recommend that you add Firewall filters to
all interfaces except the dialup interface that blocks NetBIOS traffic. This prevents any NetBIOS
packets from getting into the Business Communications Manager and bringing up the dialup
interface link.
Table 263 Input Rule Configuration for systems with dialup interfaces
IR1
Direction:
Stateful:
Disposition:
Protocol:
Source IP:
Source Mask:
Source Port:
Destination IP:
Destination Mask:
Destination Port:
IR2
Direction:
Stateful:
Disposition:
Protocol:
Source IP:
Source Mask:
Source Port:
Destination IP:
Destination Mask:
Destination Port:
For example, if a Business Communications Manager is configured with two LANs and one ISDN
dialout interface, then these Firewall rules should be placed on both of the LANs.
Firewall rules for Business Communications Manager with Dialup interfaces
In
Yes
Block
TCP/UDP
0.0.0.0
0.0.0.0
NETBIOS
0.0.0.0
0.0.0.0
NETBIOS
In
Yes
Block
TCP/UDP
0.0.0.0
0.0.0.0
NETBIOS
0.0.0.0
0.0.0.0
DNS
Programming Operations Guide
831