Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Blocking NFS/NIS/Active-X and IRC

Hi,

I need some help about blocking NFS ,NIS and IRC from my pix inside network to any untrusted network.

What are the ports used by NFS and NIS ?

What are the well know chat services that needs to be blocked ? IP addresses and port ranges?

Any help is appreciated.

regards,

jimmy.

1 REPLY
New Member

Re: Blocking NFS/NIS/Active-X and IRC

Hi,

I'm not an expert of this, but I'll try to give some suggestions.

Very often NFS uses dynamic ports that are "communicated" via the portmapper which listens on port 111, although most NFS servers tend

to use UDP port 2049 (maybe according to a recommendation, not properly a requirement).

As far as IRC is concerned, in general, the port used is 6667. Some servers listen to other ports usually in the 6660-6670 range. On the folloqing web site:

http://www.irchelp.org

you can find a lot of information about this subject.

Hope this helps ...

Regards,

Sonia

Security System Engineer

SANS/GIAC Certified Firewall Analyst (GCFW)

- http://www.giac.org/GCFW_400.php -

184
Views
0
Helpful
1
Replies
CreatePlease login to create content