Cisco CSA as a personal firewall

Unanswered Question
Sep 18th, 2009
User Badges:

Hi,

Can we use Cisco CSA just as a personal firewall. I have been trying to create simple allow-deny rules but have not been succesful.

How can I create rules for just blocking an IP Range for RDP and allow all other IPS for all Ports?

Thanks in adv.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
srue Fri, 09/18/2009 - 05:41
User Badges:
  • Blue, 1500 points or more

seems like overkill for CSA as it can do so much more. Why not just use windows firewall?

tsteger1 Fri, 09/18/2009 - 11:49
User Badges:
  • Red, 2250 points or more

You need to modify the Windows XP Remote Control Module to allow RDP from only those addresses you want.


You also need to create an exception to your Personal Firewall module to exclude the addresses of your IPS.


Tom

abdave Sat, 09/19/2009 - 08:52
User Badges:

where I need to modify Module? on CSA?Is there any option like that?

tsteger1 Wed, 09/23/2009 - 10:30
User Badges:
  • Red, 2250 points or more

It depends on the version.


In 5.2 it's the the rule module "Windows XP Remote Control Module".


In 6.X I didn't see a comparable rule module but it wouldn't be difficult to create a rule using the User State set:


"Remote Interactive Logon [V6.0.1 r106] MS defined - All users who log on to the computer using a Remote Desktop connection."


and " RDP [V6.0.1 r106] Remote Desktop Protocol (Microsoft) Network Service " variable.


Tom

Actions

This Discussion