SolvedPrivate

Sophos Client Firewall Configuration

Posted on 2014-07-27
5
27 Views
Last Modified: 2016-02-25
Need some help getting the firewall configed for an admin workstation.  Have the guides, but it's not helping much for what I need.  Here is the scenario.  I am a domain admin and I basically want to allow everything I initiate from my workstation, but want to be in stealth mode.  I don't want anyone to be able to know my device is even on the network.  I think I'm close to that, but I am unable to access network resources like files shares.  I can get to the Internet, RDP, VMware client, Exchange, Lync and Citrix apps.  What I cannot do is open up ADUC, Remote to other devices via mmc snap-ins, or browse file servers.  Any help is greatly appreciated.
0
Comment
Question by:BrianRB
  • 2
  • 2
5 Comments
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
Comment Utility
don't allow incoming traffic i.e. block all from the local network.
0
 
LVL 2

Author Comment

by:BrianRB
Comment Utility
yeah I've got that part...I'm thinking rpc outbound is blocked or something.  why would I not be able to use mmc to connect to remote machines or browse file shares?
0
 
LVL 8

Expert Comment

by:barrykfl
Comment Utility
if outbound not block ...then consider protocol and ports u didnt include them and block by default...eg. netbios , icmp , cifs ,ftp ...etc.
0
 
LVL 2

Author Comment

by:BrianRB
Comment Utility
I'm under a gun right now.  Will you please send port numbers?
0
 
LVL 8

Accepted Solution

by:
barrykfl earned 500 total points
Comment Utility
http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
plse note some are tcp some are udp , just try to test first.
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

UPDATE - 6/15/2011 Added support for Release Update 6 Maintenance Patch 2 Point Patch 1 (RU6 MP2 PP1). Fixed a defect in the username field that was hard-coded to look for a specific domain (left over code from testing). This release will be the …
Ransomware continues to be a growing problem for both personal and business users alike and Antivirus companies are still struggling to find a reliable way to protect you from this dangerous threat.
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now