-----BEGIN PGP SIGNED MESSAGE-----
disable port 113 on the firewall. you may have the case where the remote
machine is trying to ident , the packet is hitting the firewall and it is
replying that no user is using the outbound port (no user is, it is being
NATed)
David Lang
On Thu, 22 Jul 1999 [EMAIL PROTECTED] wrote:
> Date: Thu, 22 Jul 1999 16:39:56 -0400 (EDT)
> From: [EMAIL PROTECTED]
> To: David C. Smith <[EMAIL PROTECTED]>
> Cc: [EMAIL PROTECTED]
> Subject: Re: A few questions about certain ports
>
>
>
> On Thu, 22 Jul 1999, David C. Smith wrote:
>
> > Usually I have found that most of my port 137 log entries went to employees
> > who had laptops or attempted to configure WINS (which is Netbios Name
> > Service) at home to my internal server numbers.
> >
> > Port 113 is IDENT, which is used to identify incoming connections as
> > specified in the RFC 1413 document. (from the man page). I have found that
> > these are common place - but running the identd services is usually a hugh
> > security hazard.
> >
> > Dave Smith
>
> Thanks Dave. I wasn't planning on running identd services but now I'm
> thinking I may need to. I'm not sure.
>
> Our firewall is an IP masq'ing Linux box.
> Right now our internal users are having trouble sending mail via smtp.
>
> It appears that the smtp server is sending auth packets back to the linux
> box but they aren't getting unmasqueraded right to get back to the client
> machine. I'm not sure what the deal is with this. Our internal machines
> are gettin gerrors like:
>
> "relaying denied" (netscape email client)
> and
> "no transport provider was available" (outlook email client)
>
> Any help would be greatly appreciated. Thanks a bunch.
>
> Sincerely,
> Josh Estelle
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
"If users are made to understand that the system administrator's job is to
make computers run, and not to make them happy, they can, in fact, be made
happy most of the time. If users are allowed to believe that the system
administrator's job is to make them happy, they can, in fact, never be made
happy."
- -Paul Evans (as quoted by Barb Dijker in "Managing Support Staff", LISA '97)
-----BEGIN PGP SIGNATURE-----
Version: PGP for Personal Privacy 5.0
Charset: noconv
iQEVAwUBN5et+D7msCGEppcbAQHPbAf/cd/KmxCfxLix4FrdqqMRA3b14KwKFgfn
s1ERc1Fy235RliXvCVCvDrFS+rBMDI/uH8CSqDJSAWAgFrX+G7jQZettfOMXsyCS
gmoRjhQ+5LpKrWYIlxGWNPtM7uqn9rXDGRuEMQS0krUILfpMmjhTX3o9/PGJ5WIr
2PQBFwDzVzUuaUcyyZiT+n0b2UJ4lB18F9LUdWVj/9wFEE9odbGrBdQvaE32UCt0
hQcIjYKnfoXWw2jo+7Rmwr2sn6B+3HF0JqeGv9iMWBMVdty3BaLlB9A5GUg11+wB
1KH7VHMKQdVeRpX+gNzvQBc2tv3tDLDq6H/S4nkH5oG0ddH2r0uQYw==
=Z6qF
-----END PGP SIGNATURE-----
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
