Configuring Advanced Options; Enabling The Ident Port - Symantec 360R - Security Gateway SGS Administration Manual
Gateway security 300 series
Hide thumbs
Also See for 360R - Security Gateway SGS:
- Installation manual (66 pages) ,
- Quick start card (2 pages)
Table of Contents
Advertisement
76 Network traffic control
Configuring advanced options
Configuring advanced options
Enabling the IDENT port
2
In the right pane, on the Special Application tab, on the Special Application
drop-down list, select an existing special application.
3
Make the changes to the special applications fields.
4
Click Update.
The configured rule is displayed in the Special Application List.
To delete an special application
1
In the SGMI, in the left pane, click Firewall.
2
In the right pane, on the Special Applications tab, on the Application drop-
down list, select an existing special application.
3
Click Delete.
The Symantec Gateway Security 300 Series has several advanced firewall
options for special circumstances.
Queries to the IDENT port (113) normally result in the host name and company
name information being returned. However, this service poses a security risk
since attackers can use this information to hone in their attack methodology. By
default, the appliance sets all ports to stealth mode. This configures a computer
to appear invisible to those outside of the network. Some servers (like a certain
email or MIRC servers) use the IDENT port of the system accessing them.
You can configure the appliance to enable the IDENT port. Enabling this setting
makes port 113 closed (not open) and not stealth. You should enable this setting
only if there are problems accessing a server (server time-outs).
Note: If you experience time-outs when using your mail (SMTP) service,
enabling the IDENT port may correct this problem.
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
Need help?
Do you have a question about the 360R - Security Gateway SGS and is the answer not in the manual?