SolvedPrivate

Sophos Client Firewall Configuration

Posted on 2014-07-27
5
31 Views
Last Modified: 2016-02-25
Need some help getting the firewall configed for an admin workstation.  Have the guides, but it's not helping much for what I need.  Here is the scenario.  I am a domain admin and I basically want to allow everything I initiate from my workstation, but want to be in stealth mode.  I don't want anyone to be able to know my device is even on the network.  I think I'm close to that, but I am unable to access network resources like files shares.  I can get to the Internet, RDP, VMware client, Exchange, Lync and Citrix apps.  What I cannot do is open up ADUC, Remote to other devices via mmc snap-ins, or browse file servers.  Any help is greatly appreciated.
0
Comment
Question by:BrianRB
  • 2
  • 2
5 Comments
 
LVL 80

Expert Comment

by:David Johnson, CD, MVP
ID: 40222821
don't allow incoming traffic i.e. block all from the local network.
0
 
LVL 2

Author Comment

by:BrianRB
ID: 40222825
yeah I've got that part...I'm thinking rpc outbound is blocked or something.  why would I not be able to use mmc to connect to remote machines or browse file shares?
0
 
LVL 8

Expert Comment

by:barrykfl
ID: 40240676
if outbound not block ...then consider protocol and ports u didnt include them and block by default...eg. netbios , icmp , cifs ,ftp ...etc.
0
 
LVL 2

Author Comment

by:BrianRB
ID: 40240928
I'm under a gun right now.  Will you please send port numbers?
0
 
LVL 8

Accepted Solution

by:
barrykfl earned 500 total points
ID: 40243149
http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
plse note some are tcp some are udp , just try to test first.
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
This is a little timesaver I have been using for setting up Microsoft Small Business Server (SBS) in the simplest possible way. It may not be appropriate for every customer. However, when you get a situation where the person who owns the server is i…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…

713 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question