Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

DCE RPC Handling on ASA - how to specify Universal Unique Identifier UUID

Hi,

although googling, searching cisco.com, cisco npc and so on I didn?t find a way to specify the DCE-RPC UUID to create an ACL permitting only certain DCE-RPC service through an ASA (and denying othes) e.g. allow: 469d6ec0-0d87-11ce-b13f-00aa003bac6c MS Exchange System Attendant Public Interface

and deny

a4f1db00-ca47-1067-b31e-00dd010662da Exchange Server STORE ADMIN Interface

thanks for your support

2 REPLIES
Silver

Re: DCE RPC Handling on ASA - how to specify Universal Unique Id

This would require the ACL technology to support DCE-RPC UUID as a criteria in the acl which AFAIK it does not. It would be cool for not only ACLs but for netflow to support this as well. Maybe someone at Cisco is listening ;)

New Member

Re: DCE RPC Handling on ASA - how to specify Universal Unique Id

the question is:

what does DCERPC Inspect Map do because I think it should be found somewhere there and if I can not specify specific UUIDs at all - what is the meaning of that all?

similar to e.g:

"Service ID?Displays the SunRPC program number, or service ID, allowed to traverse the security appliance." and "Configuration > Properties > SUNRPC Server > Add/Edit SUNRPC Service" in the ADSM Manager

215
Views
3
Helpful
2
Replies
CreatePlease to create content