Re: Pix ASA hide ports for portscan?
- From: Uli Link <VonRechts.NachLinks@xxxxxxxxxxxxxxxxxxx>
- Date: Fri, 30 May 2008 12:09:01 +0200
Edwin schrieb:
Hi All,
I have configured a Pix ASA and opened some ports to dmz and inside for e.g. mail, www and rdp.
Is it possible to have the pix hide these open ports from portscans originated from outside? If so, how can it be done?
Can be done by ACL denying access to these ports or by shutting down the WAN interface ;-) This is most probably not what you want.
If your PIX refuses to connect to the port the listener of the daemon of DMZ' server will not be reachable anymore from the outside This is due to the nature of tcp and not related to any special firewall.
--
Uli
.
- Follow-Ups:
- Re: Pix ASA hide ports for portscan?
- From: Edwin
- Re: Pix ASA hide ports for portscan?
- References:
- Pix ASA hide ports for portscan?
- From: Edwin
- Pix ASA hide ports for portscan?
- Prev by Date: Re: Tunnel trafic in a MPLS , 1 Gigabit connection
- Next by Date: Re: SSH username and password only option
- Previous by thread: Pix ASA hide ports for portscan?
- Next by thread: Re: Pix ASA hide ports for portscan?
- Index(es):
Relevant Pages
|
