RPC over HTTP on PIX 6.3(5) and ASA 8.0 (3)

Unanswered Question
Aug 19th, 2008


A number of my clients have PIX 6.3(5) and ASA 8.0(3) installed on their networks. Some of them are planning to deploy RPC over HTTP in order to access Microsoft Outlook Web access.

What ports do I need to open on the PIXes and ASAs?


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
ggilbert Tue, 08/19/2008 - 07:00


I did a google search and found the following statement

"The only ports you'll need to open on your firewall are TCP 80 and, if using SSL, TCP 443."


If you know which port they are going to use, open that port through an ACL for access to the Microsoft Outlook Web access IP address.

Rate this post, if it helps.



Farrukh Haroon Tue, 08/19/2008 - 11:35

Disable HTTP, use only HTTPS. This means you have to open port no 443 only. However please note to be able to setup a profile, the user must be on the LOCAL LAN (because this requires RPC access). Once the profile is setup, the user can access his mailbox from anywhere he likes (There are some workarounds for this limitation also).




This Discussion