Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
nucusr
Participant

Smart Move conversion issue - MS-RPC

When converting a Juniper policy through the Smart move Tool I am presented with the below conversion issue

 

9000 - set policy id 100 name "xxxxx" from trust to untrust "source "destination" "MS-RPC-ANY" permit

conversion policy:-
err in service-line 9000 = add service-group name "MS-RPC-ANY"
add service-group name "Err-in_service-line_9000"

 

The juniper Service Group MS-RPC-ANY comprises of:-

MS-RPC-TCP (tcp/135)

MS-RPC-UUID-ANY-TCP

MS-RPC-UUID-ANY-UDP

 

Can someone please explain the reason for this issue and a possible fix? Is it simply a case of replacing MS-RCP with DCE-RCP?

0 Kudos
3 Replies
KK
Employee
Employee

Is there any update on this? I am also trying to convert the policies and objects from Netscreen but its giving error for service "MS-RPC-ANY".

What is the equivalent service object on Checkpoint for "MS-RPC-ANY" on netscreen?

0 Kudos
G_W_Albrecht
Legend
Legend

I would assume ALL_DCE_RPC, did you try that ?

0 Kudos
KK
Employee
Employee

Thats the one I am going to use, how can we be sure that is the correct replacement before we enable policies in Production?

0 Kudos