End-Point Configuration; Thin Client Firewall Exceptions; Identifying Required Firewall Modifications (Ports To Open) - HP T5720 - Compaq Thin Client User Manual
Cisco vpn support for hp thin clients and blade pcs
Hide thumbs
Also See for T5720 - Compaq Thin Client:
- Quick reference manual (49 pages) ,
- Hardware reference manual (48 pages) ,
- User manual (45 pages)
Table of Contents
Advertisement
End-Point Configuration
Thin Client Firewall Exceptions
The HP t5720 XPe-based Thin Client is configured by default with the Sygate firewall actively blocking
all ports except those required for basic Web browsing and RDP connections. The HP Compaq t5720
Thin Clients used in this reference white paper also had firewall port exceptions added for RGS,
which accelerates graphics in a manner superior to RDP.
In order to properly configure VPN client software to communicate outside of basic Windows well-
known ports, the Sygate firewall must be modified as follows:
Description
IP Address
Allow Virtual
10.1.1.2
NIC operation
10.2.2.2
(Deterministic
Networks)
Allow VPN UDP
traffic
Identifying Required Firewall Modifications (Ports to Open)
This document does not provide a full tutorial on debugging Sygate port requirements for generalized
application use. However, the general methodology is to consult the Sygate traffic log carefully as
applications encounter failures/errors and check for blocked traffic. In the following example, the
Cisco 3560 switch internal port (10.1.1.1) in the reference configuration can clearly be seen to have
blocked traffic on remote ports ports 500 and 62515 (first two entries).
Remote Ports
Local Ports
8905,8906
500,1562,8905,
8906,62515
Incoming/Outgoing
Both
Both
8
Advertisement
Table of Contents
