Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2150
Views
0
Helpful
1
Replies

DCE-RPC uuid oriented inspection ACL

Gizmo37QC
Level 1
Level 1

‎05-03-2010 12:24 PM - edited ‎03-11-2019 10:40 AM

Hi all, did someone successfully applied ACL for MS-RPC service in an ASA or a FWSM ?   There is a lot of example but it seem to be generic parameter.

We are requested to do as some other manufacturer does, by specifying RPC access based on UUID . (ie, specify the RPC service authorized to pass through the firewall : Only Ms-Exchange Directory Service for exemple).

When i look to the last FWSM or ASA software guide, nowhere it is specified we can add or specify UUID. I also look at optionnal info in ASDM dce inspection protocol and nothing about UUID.

If someone have implemented it, is it possible to get additional documentation ?

Thanks,

Gizmo

Labels:
0 Helpful
1 Reply 1

Panos Kampanakis
Cisco Employee
Cisco Employee

‎05-03-2010 01:53 PM

After 4.0 there was a dcerpc type policy-0map that was introduced http://www.cisco.com/en/US/docs/security/fwsm/fwsm40/command/reference/p.html#wp1705164

There you can set Pinhole Timeout, Endpoint-mapper, Endpoint-mapper service lookup, Endpoint-mapper service lookup timeout

I hope it helps.

PK

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card