All, Am I missing something here? We have all traffic from our PSN (172.16.4.x) on port 137 disallowed from going out to the real world. However, looking at the following entry (not the only one either), it appears that that is not working: Outbound Filters: Deny outbound NETBIOS (TCP) from PSN Network Deny PRO TCP from 172.16.4.0/255.255.255.0 to 0.0.0.0/0.0.0.0 137 138 Deny outbound NETBIOS (UDP) from PSN Network Deny PRO UDP from 172.16.4.0/255.255.255.0 to 0.0.0.0/0.0.0.0 137 138
Firewall Log Entry: 16 6 Feb 17 18:28:17 NAT: Open UDP [172.16.4.193/137]->[207.XXX.XXX.210/666]->[207.XXX.XXX.215/137]. 16 6 Feb 17 18:28:18 NAT: Close UDP [172.16.4.193/137]->[207.XXX.XXX.210/666]->[207.XXX.XXX.215/137] Pkts 1 0, Bytes 78 0. ______________________________ Edwin Covert, CISSP Enterprise Security Consultant Corporate Security Officer Integrated Communication Solutions http://www.icscorp.com
BEGIN:VCARD VERSION:2.1 N:Covert, CISSP;Edwin;B FN:Edwin B Covert, CISSP ORG:Integrated Communication Solutions;Technical Services TITLE:Enterprise Security Consultant NOTE;ENCODING=QUOTED-PRINTABLE:PGP Fingerprint:=0D=0A1493 6FB2 6D97 2188 852D D4B2 3223 5DB8 6B12 07F2 TEL;WORK;VOICE:(301) 695-8800 , x256 TEL;PAGER;VOICE:(888) 990-8237 TEL;WORK;FAX:(301) 695-8877 ADR;WORK;ENCODING=QUOTED-PRINTABLE:;Enterprise Security;5300 Westview Drive=0D=0ASuite 404;Frederick;Maryland;2= 1703;USA LABEL;WORK;ENCODING=QUOTED-PRINTABLE:Enterprise Security=0D=0A5300 Westview Drive=0D=0ASuite 404=0D=0AFrederick, = Maryland 21703=0D=0AUSA X-WAB-GENDER:2 URL: URL:http://www.icscorp.com ROLE:CISSP EMAIL;PREF;INTERNET:[EMAIL PROTECTED] REV:20000210T183736Z END:VCARD
