Port 445 Question

Unanswered Question
Jan 13th, 2008
User Badges:

CISCO-PIX-515E:

I am NOT exposing port 445 to the internet (as I have no need or disire to do so and am well aware of the security issues)


- but I have noticed that one of my DMZ hosts (an SSL VPN Server) is trying to pass 445 traffic internally -


so my question is...is it also considered to be bad practice to allow port 445 traffic between a DMZ host and an internal host?


Externally we ONLY allow port 443 to the DMZ Server in question.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (1 ratings)
Loading.
Anonymous (not verified) Fri, 01/18/2008 - 13:16
User Badges:

I don't think there is any harm in this since systems on DMZ can't access internal hosts directly.

cisco24x7 Fri, 01/18/2008 - 13:27
User Badges:
  • Silver, 250 points or more

This is the case that you have the SSL VPN

Server configured for Windows Domain

authentication. It is trying to use either

port 139 (legacy) or port 445 (new) for

authenticating users with Domain Authentication.


I do the same thing with my VPN concentrator.


Actions

This Discussion