Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Allowing RPC through a PIX can you permit certain program numbers only ?

I can allow inbound access to port 111 which in turn allows inbound embryonic connections for the RPC application. This is a big hole in security.

In CBAC on a router, you can inspect and permit certain RPC program numbers. Is it possible to do this in the PIX firewall ?

Many thanks,

Mark

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Allowing RPC through a PIX can you permit certain program nu

Mark,

Nope, the PIX has no ability (like CBAC) to inspect RPC program numbers. We do offer limited UDP RPC fixup for portmapper and rpcbind exchanges. Hope this helps.

Scott

2 REPLIES

Re: Allowing RPC through a PIX can you permit certain program nu

Mark,

Nope, the PIX has no ability (like CBAC) to inspect RPC program numbers. We do offer limited UDP RPC fixup for portmapper and rpcbind exchanges. Hope this helps.

Scott

Community Member

Re: Allowing RPC through a PIX can you permit certain program nu

Thanks for the info Scott.

Best regards,

Mark

116
Views
0
Helpful
2
Replies
CreatePlease to create content