Ports to be opened for WAN link.

Hello,

We have a Site-to-Site VPN conneciton between Cisco PIX (remote office) Cisco ASA (main office)
Im setting up the ACL filters for this connection, can someone let me know what ports i need to "allow" for the following services?

What ports are required for:

*Domain clients workstation login.
*DNS
*WINS
*Exchange connection (from outlook clients) - i think there will be a few ports
*Anything else you can think of!

Thanks,

Craig
LVL 3
chouckhamAsked:
Who is Participating?

[Webinar] Streamline your web hosting managementRegister Today

x
 
JimboEfxConnect With a Mentor Commented:
Yeah, I totally see where you are comming from. But the moment something is wrong and needs troubleshooted - you'll turn the lot off to see what the problem is!

There are some cools things you can do... although i'll not pretend to be authoriative here.. just giving you ideas:

port security:
http://tldp.org/HOWTO/html_single/8021X-HOWTO/#what8021x

IPsec as a firewall
http://homepages.wmich.edu/~mchugha/w2kfirewall.htm

Windows PKI
http://technet.microsoft.com/en-gb/library/bb457034.aspx

Windows Access Based Enumeration
http://www.microsoft.com/windowsserver2003/techinfo/overview/abe.mspx

Minasi on Security
http://www.minasi.com/secoutln.htm
The guy is a must listen...

Physical security. Without this you have no security.

HTH
0
 
JimboEfxCommented:
Hello chouckham,

Here is a starter:

http://www.poopoccurs.com/windows/2kports.html

To be honest, setting something like this up is usually more pain than it is worth... for an 'internal' network.

Regards,

JimboEfx
0
 
chouckhamAuthor Commented:
Thanks,

I was also thinking along the same lines.
I was only considering this for a complete lockdown.

Thanks,
Craig
0
All Courses

From novice to tech pro — start learning today.