EyeBallInSalt
asked on
How to secure Portmapper on Centos server
Hi,
From my PCI vulnerability scan i have discovered that i need to close down the service sunrpcportmap on my dedicated web server.
I've found some iptable instructions to this end: .
iptables -A INPUT -p tcp -s! 192.168.0.0/24 --dport 111 -j DROP
iptables -A INPUT -p udp -s! 192.168.0.0/24 --dport 111 -j DROP
iptables -A INPUT -p tcp -s 127.0.0.1 --dport 111 -j ACCEPT
but am a wee bit confused about what IP/IP range to allow?
If it helps, here's what rpcinfo -p pumps out
program vers proto port service
100000 4 tcp 111 portmapper
100000 3 tcp 111 portmapper
100000 2 tcp 111 portmapper
100000 4 udp 111 portmapper
100000 3 udp 111 portmapper
100000 2 udp 111 portmapper
Can someone explain this to me/advise, please?
From my PCI vulnerability scan i have discovered that i need to close down the service sunrpcportmap on my dedicated web server.
I've found some iptable instructions to this end: .
iptables -A INPUT -p tcp -s! 192.168.0.0/24 --dport 111 -j DROP
iptables -A INPUT -p udp -s! 192.168.0.0/24 --dport 111 -j DROP
iptables -A INPUT -p tcp -s 127.0.0.1 --dport 111 -j ACCEPT
but am a wee bit confused about what IP/IP range to allow?
If it helps, here's what rpcinfo -p pumps out
program vers proto port service
100000 4 tcp 111 portmapper
100000 3 tcp 111 portmapper
100000 2 tcp 111 portmapper
100000 4 udp 111 portmapper
100000 3 udp 111 portmapper
100000 2 udp 111 portmapper
Can someone explain this to me/advise, please?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.