Solved

NOrtel Contivity 1010 -open port

Posted on 2006-10-25
8
906 Views
Last Modified: 2011-10-03
I need to open a port. I am in the menu but there is no  port open etc ... can anyone walk me through this. Its port 443 by the way.


Thanks
0
Comment
Question by:tmandu
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 4
8 Comments
 
LVL 2

Expert Comment

by:HeavyWaterLTD
ID: 17806606
If you are not running a firewall you have to create and apply a new "contivity interface filter"

Check your public interface to see what filter it is currently running. It's most likely "default-contivity filter" which only allows inbound IPSEC. You can create and edit filters I believe under: profiles -> filters. just copy the default filter and allow port 443 on top.
0
 

Author Comment

by:tmandu
ID: 17806631
our firewall is the contivity .. so do i do the contivity interface a filter .

I have no clue where to start what is it under ?
System
servgices
Routing ??
0
 
LVL 2

Expert Comment

by:HeavyWaterLTD
ID: 17806748
by default the contivity boxes are secured by contivity interface filters which are much like cisco access-lists. If you bought additional firewall license you have a stateful firewall running on your box.

If you have the firewall look under services -> FIREWALL/NAT
0
Salesforce Has Never Been Easier

Improve and reinforce salesforce training & adoption using WalkMe's digital adoption platform. Start saving on costly employee training by creating fast intuitive Walk-Thrus for Salesforce. Claim your Free Account Now

 

Author Comment

by:tmandu
ID: 17806933
Yes I have the contivity firewall..So now how can I open a port >

Thx
0
 
LVL 2

Expert Comment

by:HeavyWaterLTD
ID: 17807113
If you have the Stateful firewall installed there should be a button in FIREWALL>NAT page which will launch a gui tool. Here you can create hosts/networks and insert rules as needed: Make the rule something like.....

Action: PERMIT
source: ANY
destination: "your HTTPS server host"
destination port: 443 or HTTPS

and you can leave other parameters at "ANY." You may have to create custom objects on your own during this process like your server.....  Make sure to put this rule in at the top of your list.
____________________________

If your box is running the "interface filter" instead of the stateful firewall you need to edit your default interface filter.....

you do this in PROFILES>FILTERS

select "Deny All" filter from the Contivity Interface Filters sections. You can edit this default rule and insert a similar rule to the above. You'll have to go through various pages to create new host etc..... remember when you create a host here with a specified IP address use wildcard bits instead of subnet mask. (eg.... host 1.1.1.1/0.0.0.0). Again after you create the rule make sure the rule appears on the very top of the "deny all" filter.

0
 

Author Comment

by:tmandu
ID: 17807257
Under the GUI is it INterface specific   of IMplied ??
0
 
LVL 2

Accepted Solution

by:
HeavyWaterLTD earned 500 total points
ID: 17807661
i don't specifically recall the details of the GUI interface but your should create a specific rule. Implied rules should have some default rules that allows normal ipsec functionality of the box(probably not a good idea to touch these rules).
0
 

Author Comment

by:tmandu
ID: 17814724
Hey, I have to OPEN  port 443 for ADP transmission. I am in the NAT FIREwall.
 

 
I added the second rule. under the TCP/ADP icon i putin port 443 , then ACCEPT.
Do i have to have anything under DESTIINATION ( in yellow) like ADPS IP address, or am I looking at this the wrong way ?
 
Also do I have to do anything in the SOURCE INTERFACE RULES. ALso shoudl this new rule be first ???
 
Thanks - I think I'm almost there.
0

Featured Post

Online Training Solution

Drastically shorten your training time with WalkMe's advanced online training solution that Guides your trainees to action. Forget about retraining and skyrocket knowledge retention rates.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
Most of the applications these days are on Cloud. Cloud is ubiquitous with many service providers in the market. Since it has many benefits such as cost reduction, software updates, remote access, disaster recovery and much more.
Viewers will learn how to connect to a wireless network using the network security key. They will also learn how to access the IP address and DNS server for connections that must be done manually. After setting up a router, find the network security…
Michael from AdRem Software explains how to view the most utilized and worst performing nodes in your network, by accessing the Top Charts view in NetCrunch network monitor (https://www.adremsoft.com/). Top Charts is a view in which you can set seve…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question