Symantec 360R Administration Guide - Page 76
Configuring advanced options, Enabling the IDENT port
UPC - 037648240185
View all Symantec 360R manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 76 highlights
76 Network traffic control Configuring advanced options 2 In the right pane, on the Special Application tab, on the Special Application drop-down list, select an existing special application. 3 Make the changes to the special applications fields. 4 Click Update. The configured rule is displayed in the Special Application List. To delete an special application 1 In the SGMI, in the left pane, click Firewall. 2 In the right pane, on the Special Applications tab, on the Application drop- down list, select an existing special application. 3 Click Delete. Configuring advanced options The Symantec Gateway Security 300 Series has several advanced firewall options for special circumstances. Enabling the IDENT port Queries to the IDENT port (113) normally result in the host name and company name information being returned. However, this service poses a security risk since attackers can use this information to hone in their attack methodology. By default, the appliance sets all ports to stealth mode. This configures a computer to appear invisible to those outside of the network. Some servers (like a certain email or MIRC servers) use the IDENT port of the system accessing them. You can configure the appliance to enable the IDENT port. Enabling this setting makes port 113 closed (not open) and not stealth. You should enable this setting only if there are problems accessing a server (server time-outs). Note: If you experience time-outs when using your mail (SMTP) service, enabling the IDENT port may correct this problem.