[Last Call] Learn about multicloud storage options and how to improve your company's cloud strategy. Register Now

x
?
Solved

Question about Microsoft RPC and firewalls

Posted on 2013-02-05
2
Medium Priority
?
505 Views
Last Modified: 2013-02-06
Experts,

Suppose I have client-A on DMZ1 and server-B on DMZ2.
I allow CLIENT-A to reach server-B on TCP-135.

Suppose the RPC mapper on the server now tells the client to connect on port 1023.
Am I correct to assume this second connection is a new tcp session and if it's not permitted in the firewall ACL, then it will be dropped?
0
Comment
Question by:trojan81
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 18

Accepted Solution

by:
irweazelwallis earned 2000 total points
ID: 38858535
yes 135 is a port mapper and therefore unless your firewall allows dynamic port mapping then it won't work
you could open the additional port but generally it open something in a massive range of ports at random

Generally if you open up this the firewall becomes almost pointless as its got more holes than swiss cheese.

Depending on the application you can tie it down so that it uses static ports even if its still in a range
0
 

Author Closing Comment

by:trojan81
ID: 38859266
well done thank you
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On September 18, Experts Exchange launched the first installment of the Help Bell, a new feature for Premium Members, Team Accounts, and Qualified Experts. The Help Bell will serve as an additional tool to help teams increase question visibility.
This month, Experts Exchange sat down with resident SQL expert, Jim Horn, for an in-depth look into the makings of a successful career in SQL.
how to add IIS SMTP to handle application/Scanner relays into office 365.
This video discusses moving either the default database or any database to a new volume.
Suggested Courses

656 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question