SolvedPrivate

Sophos Client Firewall Configuration

Posted on 2014-07-27
5
28 Views
Last Modified: 2016-02-25
Need some help getting the firewall configed for an admin workstation.  Have the guides, but it's not helping much for what I need.  Here is the scenario.  I am a domain admin and I basically want to allow everything I initiate from my workstation, but want to be in stealth mode.  I don't want anyone to be able to know my device is even on the network.  I think I'm close to that, but I am unable to access network resources like files shares.  I can get to the Internet, RDP, VMware client, Exchange, Lync and Citrix apps.  What I cannot do is open up ADUC, Remote to other devices via mmc snap-ins, or browse file servers.  Any help is greatly appreciated.
0
Comment
Question by:BrianRB
  • 2
  • 2
5 Comments
 
LVL 78

Expert Comment

by:David Johnson, CD, MVP
ID: 40222821
don't allow incoming traffic i.e. block all from the local network.
0
 
LVL 2

Author Comment

by:BrianRB
ID: 40222825
yeah I've got that part...I'm thinking rpc outbound is blocked or something.  why would I not be able to use mmc to connect to remote machines or browse file shares?
0
 
LVL 8

Expert Comment

by:barrykfl
ID: 40240676
if outbound not block ...then consider protocol and ports u didnt include them and block by default...eg. netbios , icmp , cifs ,ftp ...etc.
0
 
LVL 2

Author Comment

by:BrianRB
ID: 40240928
I'm under a gun right now.  Will you please send port numbers?
0
 
LVL 8

Accepted Solution

by:
barrykfl earned 500 total points
ID: 40243149
http://en.wikipedia.org/wiki/List_of_TCP_and_UDP_port_numbers
plse note some are tcp some are udp , just try to test first.
0

Featured Post

Control application downtime with dependency maps

Visualize the interdependencies between application components better with Applications Manager's automated application discovery and dependency mapping feature. Resolve performance issues faster by quickly isolating problematic components.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Antivirus - Webroot vs Symantec? 6 104
Spam mails from a compromised internal computer 5 62
Is this virus ? 6 36
"k" and "i" wont work in a dell lap top 5 16
Do you have a windows based Checkpoint SmartCenter for centralized Checkpoint management?  Have you ever backed up the firewall policy residing on the SmartCenter?  If you have then you know the hassles of connecting to the server, doing an upgrade_…
The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
This video Micro Tutorial explains how to clone a hard drive using a commercial software product for Windows systems called Casper from Future Systems Solutions (FSS). Cloning makes an exact, complete copy of one hard disk drive (HDD) onto another d…
Windows 8 came with a dramatically different user interface known as Metro. Notably missing from that interface was a Start button and Start Menu. Microsoft responded to negative user feedback of the Metro interface, bringing back the Start button a…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now