Avatar of Mr.X
Mr.X
 asked on

firewall rule- if I specify tcp- does it combine all tcp protocols or only web traffic

hi guys,
just a general firewall question

I got a rule as -outgoing rule

protocol is TCP - source IP any- source port any- dest IP any-  dest port 443

is this gonna make all tcp protocols to use only port 443
I mean many protocols using tcp - like (http,ftp,telnet,ssh,imap, etc ) all gonna use only port 443 while going out. ???
or it’s going to route only web traffic which uses http/https over 443 port ??
CiscoWindows Server 2008Windows Server 2003

Avatar of undefined
Last Comment
Seth Simmons

8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
kevinhsieh

Log in or sign up to see answer
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform
Sign up - Free for 7 days
or
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
Not exactly the question you had in mind?
Sign up for an EE membership and get your own personalized solution. With an EE membership, you can ask unlimited troubleshooting, research, or opinion questions.
ask a question
Mr.X

ASKER
if it’s not about other protocols. why should
I specify tcp ?
what will happen if I specify udp in the same spot ?
kevinhsieh

Then it would match UDP traffic that is destined for UDP port 443. There isn't much that I am aware of, unless that's part of the newer http spec.
Mr.X

ASKER
sorry. just trying to understand.
when you say would match tcp traffic or match udp traffic . what does that mean ???
because I always thought if some one  says match tcp traffic- it matches all protocols come under tcp. and same way for udp - match it’s protocols .
This is the best money I have ever spent. I cannot not tell you how many times these folks have saved my bacon. I learn so much from the contributors.
rwheeler23
kevinhsieh

It is like a search, where all parameters need to match. If you just match TCP, then it will match all TCP. You can further refine the match by including source and/or destination port qualifiers.
Wissam

to what I understood from your question, the answer is no. this rule will only match traffic with destination of 443. other services highlighted (http,ftp,telnet...) are not matched. you need separate rules for them so it will only route secure web traffic (https) which is destined to port 443. You need to add port 80 for http and don’t forget 53 tcp/udp for dns
Seth Simmons

No comment has been added to this question in more than 21 days, so it is now classified as abandoned.

I have recommended this question be closed as follows:

Accept: 'kevinhsieh' (https:#a43012505)

If you feel this question should be closed differently, post an objection and the moderators will review all objections and close it as they feel fit. If no one objects, this question will be closed automatically the way described above.

seth2740
Experts-Exchange Cleanup Volunteer
Get an unlimited membership to EE for less than $4 a week.
Unlimited question asking, solutions, articles and more.