Mark, My $0.02 worth says:
I know WUG can publish its web site through a firewall, I do it. You don't need ports 135-139, port 80 is OK. I let it publish on the standard web port and rely (bravely!) on the user authentication inside the WUG server for security. If the standard web port doesn't work, the best thing I can recommend is sniffing the connection with ethereal. Tedious, but exact. Steve Dowling -----Original Message----- From: Jay Drew [mailto:[EMAIL PROTECTED] Sent: Thursday, 4 March 2004 4:46 AM To: [EMAIL PROTECTED] Subject: RE: [WhatsUp Forum] Number of devices concern Wouldn't this be solved if the firewall supports the use of the established bit? Another method would be to SSH through the firewall to a host on the trusted side and tunnel the port 80 connection through to the WUG machine. The advantage with this method is the password is encrypted inside the tunnel, keeping it from snooping on the untrusted side of the world. Jay At 07:51 AM 3/3/2004, you wrote: >Mark, > >Your source port will change with every initiated browser session. The >authentication command should be sent back to you on your source port >from WUG's Port-80 as an authentication challenge which windows will >then pop up. Because you will never know what the source port is until >it's opened for communications, I suspect using a port scanner will not >help in this instance. As much as I hate to suggest this, it may be >that you might have to open up the NetBIOS (Ports 137-139) and then >narrow it down from there but this should not be required if it does >work. Also check with your firewall manufacturer to see what they can >suggest since it appears to be dropping the communications. As a >testing step only, try setting the WUG WEB interface back to Port 80 >and see if it makes any difference accessing it thru the firewall. If >it does, then it might be you'll have to open up Port 80- as well as >what ever your upper level port you config the WEB interface to use. > >Good luck hunting this one down... > >------------------------------------------------------------ >Bryan Harrell, SPII >Network Transport & Administration - Tallahassee >Fla. Dept of Revenue >(850)-921-0700 S/C 291-0700 >------------------------------------------------------------ > > > >>> [EMAIL PROTECTED] 03/02/2004 11:35:24 AM >>> > > >Hello all, > > > >Once again I am asking for help from all the knowing public: > > > >I have set up my WUG server and have the Web Server running on a port >other than the standard 80. I have created a conduit portal through my >firewall >and need to be able to access the WUG Web Server pages from anywhere. >I >cannot get the access/login screen to appear through the firewall >conduit >unless I open every port. Can anyone tell me what ports besides the >one the >Web Server is set to run on are in use. I have port scanned the system >and >only hit on four active ports and when opening them I still cannot get >to >the access/login screen. > > > >Thanks in advance. > > > >Mark A. Hunsaker > >Systems Administrator > >Town of Flower Mound > >972.874.6053 voice > >972.874.6452 fax > >[EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]> > > > > > > > >Please visit http://www.ipswitch.com/support/mailing-lists.html >to be removed from this list. > >An Archive of this list is available at: >http://www.mail-archive.com/whatsup_forum%40list.ipswitch.com/ Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/whatsup_forum%40list.ipswitch.com/ ********************************************************************** This message is intended for the addressee named and may contain privileged information or confidential information or both. If you are not the intended recipient please delete it and notify the sender. ********************************************************************** Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/whatsup_forum%40list.ipswitch.com/
