This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Shehan_Wickrama
Collaborator
‎2018-04-25 05:19 AM
Jump to solution

How can I block ports from outside and allow it for internal communications?

Hello Guys,

One of our vulnerability scanner gave the following ports as vulnerable, so we want those ports to be blocked from outside and to be allowed from the inside for inside communications.

These are the ports


264/tcp - fw1_generic.
500/udp - ikev1.
18231/tcp

18264/tcp - cp_ica

how can i do this?

Thanks

1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2018-04-25 03:11 PM
Jump to solution

Some of these are covered by implied rules.

To confirm this, go to Global Properties, click the appropriate checkbox, and install policy.

You will see log entries on Rule 0.

In which case you will have to work to disable the implied rules, but this is NOT recommended.

Refer to: How to completely disable FireWall Implied Rules 

View solution in original post

5 Replies
Brian_Deutmeyer
Collaborator
‎2018-04-25 02:09 PM
Jump to solution

I feel like I might be missing something with your question, but I think there are several ways to achieve this...

SRC: Internal Networks Group [NEGATED] | DST: Any | SVC: ports | ACT: drop

--or--

SRC: Internal Networks Group | DST: Any | SVC: ports | ACT: allow 

      * I'd have several more specific rules of the above rule with explicit destinations...

SRC: Any | DST: Any | SVC: ports | ACT: drop

--or--

Other combinations...

Shehan_Wickrama
Collaborator
‎2018-04-30 09:57 PM
In response to Brian_Deutmeyer
Jump to solution

Hi Brian,

Thank You for the reply.

Regards,

Shehan

0 Kudos
PhoneBoy
Admin
Admin
‎2018-04-25 03:11 PM
Jump to solution

Some of these are covered by implied rules.

To confirm this, go to Global Properties, click the appropriate checkbox, and install policy.

You will see log entries on Rule 0.

In which case you will have to work to disable the implied rules, but this is NOT recommended.

Refer to: How to completely disable FireWall Implied Rules 

Shehan_Wickrama
Collaborator
‎2018-04-30 09:58 PM
In response to PhoneBoy
Jump to solution

Hi Dameon,

Thanks for the reply. I have disabled some with the implied rules.

Regards,

Shehan

0 Kudos
kreynolds
Explorer
‎2020-02-03 08:43 PM
In response to PhoneBoy
Jump to solution

G             reat answer PhoneBoy, how to do this for 600 and 1100? thc

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫