This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Shehan_Wickrama
Collaborator
‎2018-04-25 05:19 AM
Jump to solution

How can I block ports from outside and allow it for internal communications?

Hello Guys,

One of our vulnerability scanner gave the following ports as vulnerable, so we want those ports to be blocked from outside and to be allowed from the inside for inside communications.

These are the ports


264/tcp - fw1_generic.
500/udp - ikev1.
18231/tcp

18264/tcp - cp_ica

how can i do this?

Thanks

1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin
‎2018-04-25 03:11 PM
Jump to solution

Some of these are covered by implied rules.

To confirm this, go to Global Properties, click the appropriate checkbox, and install policy.

You will see log entries on Rule 0.

In which case you will have to work to disable the implied rules, but this is NOT recommended.

Refer to: How to completely disable FireWall Implied Rules 

View solution in original post

5 Replies
Brian_Deutmeyer
Collaborator
‎2018-04-25 02:09 PM
Jump to solution

I feel like I might be missing something with your question, but I think there are several ways to achieve this...

SRC: Internal Networks Group [NEGATED] | DST: Any | SVC: ports | ACT: drop

--or--

SRC: Internal Networks Group | DST: Any | SVC: ports | ACT: allow 

      * I'd have several more specific rules of the above rule with explicit destinations...

SRC: Any | DST: Any | SVC: ports | ACT: drop

--or--

Other combinations...

Shehan_Wickrama
Collaborator
‎2018-04-30 09:57 PM
In response to Brian_Deutmeyer
Jump to solution

Hi Brian,

Thank You for the reply.

Regards,

Shehan

0 Kudos
PhoneBoy
Admin
Admin
‎2018-04-25 03:11 PM
Jump to solution

Some of these are covered by implied rules.

To confirm this, go to Global Properties, click the appropriate checkbox, and install policy.

You will see log entries on Rule 0.

In which case you will have to work to disable the implied rules, but this is NOT recommended.

Refer to: How to completely disable FireWall Implied Rules 

Shehan_Wickrama
Collaborator
‎2018-04-30 09:58 PM
In response to PhoneBoy
Jump to solution

Hi Dameon,

Thanks for the reply. I have disabled some with the implied rules.

Regards,

Shehan

0 Kudos
kreynolds
Explorer
‎2020-02-03 08:43 PM
In response to PhoneBoy
Jump to solution

G             reat answer PhoneBoy, how to do this for 600 and 1100? thc

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    li.common.scroll-to.top