Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

opening ports in netscreen 5gt

Posted on 2010-11-23
7
Medium Priority
?
721 Views
Last Modified: 2012-05-10
Hi,

one of the programs we installed recently needs access to internet and ports 2001 through 2005.
First, how would i check if these ports are already open or accessible on one of the server command lines and 2nd,  how would i open up these ports on a netscreen 5gt?  Thanks.
0
Comment
Question by:dankyle67
  • 4
  • 3
7 Comments
 
LVL 18

Expert Comment

by:Sanga Collins
ID: 34197184
are you trying to allow traffic from the internet into the servers or from the servers out ot the internet
0
 

Author Comment

by:dankyle67
ID: 34198711
From the server out to the internet.  I know there is a command that lets you know what ports are currently open on a machine so was thinking of checking that first if you happen to know it for the command line.
0
 
LVL 18

Expert Comment

by:Sanga Collins
ID: 34198731
telnet <destination-ip> <port #>

so to see if smtp is open on email server i would do the following:

telnet email.server.com 25
220 email.server.com Microsoft ESMTP MAIL Service, Version: 6.0.3790.467
5 ready at  Tue, 23 Nov 2010 12:52:10 -0500

in the juniper if you have trust to untrust policy that allows source any, dest any and service any. then you dont need to do anything else
0
The Lifecycle Approach to Managing Security Policy

Managing application connectivity and security policies can be achieved more effectively when following a framework that automates repeatable processes and ensures that the right activities are performed in the right order.

 

Author Comment

by:dankyle67
ID: 34199948
They said the software just needs access to the internet so by default doesnt all outbound traffic from internal network to internet get through no matter what port it uses? You only have to set up policy for specific ports if they are coming from outside correct?
0
 
LVL 18

Accepted Solution

by:
Sanga Collins earned 2000 total points
ID: 34200035
Yes by default that is what is supposed to happen, but you can go on assumptions. If you post your policies we can tell you what may or may not be missing
0
 

Author Comment

by:dankyle67
ID: 34221868
Sorry got busy on something else for awhile, but looks like it is working since software is able to get out to internet and not problems so far so thanks for the help.  Just wanted to know for the future where i can go in the netscreen admin screens to print out my settings as you mentioned about the policies.  Thanks.
0
 
LVL 18

Expert Comment

by:Sanga Collins
ID: 34222023
     Configuration > Update > Config File

this is where you can see your entire config file.
0

Featured Post

Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Getting to know the threat landscape in which DDoS has evolved, and making the right choice to get ourselves geared up to defend against  DDoS attacks effectively. Get the necessary preparation works done and focus on Doing the First Things Right.
Phishing emails are a popular malware delivery vehicle for attack.  While there are many ways for an attacker to increase the chances of success for their phishing emails, one of the most effective methods involves spoofing the message to appear to …
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question