| Title: | SEAL |
| Moderator: | GALVIA::SMITH |
| Created: | Mon Mar 21 1994 |
| Last Modified: | Fri Jun 06 1997 |
| Last Successful Update: | Fri Jun 06 1997 |
| Number of topics: | 1989 |
| Total number of notes: | 8209 |
What happens in the AltaVista Firewall when a user telnet's, ftp's to
random ports on the Firewall? I know that the Firewall will fail to
pass the connection but will it log that event? No process is
listening on ALL ports? Or does a process, periodically, scan all the
ports?
The customer indicated that if you ftp or telnet, can't remember which
one, to Port 135, switch to ANSI mode, type any character, then
disconnect the system utilization goes to 100 percent. I guess it's
trying to process the activity on Port 135? The system doesn't crash
but response time for the user's activity through the Firewall suffers
considerably.
This is Windows NT scenario.
Regards,
| T.R | Title | User | Personal Name | Date | Lines |
|---|---|---|---|---|---|
| 1757.1 | QUICHE::PITT | Alph a ha is better than no VAX! | Wed Feb 05 1997 08:34 | 11 | |
On UNIX, there are three possible outcomes: there may be a service on
that port, in which case the connection will be logged and treated
according to the rules for that service; there may be a strafe service
on the port, in which case the firewall remembers (but doesn't log, I
think) the connection; or there may be no response at all - i.e.
no-one listening, or defined to receive connections, on the port - in
which case there is no log ...
On Windows NT, who knows? Bill Gates?
T
| |||||
| 1757.2 | BIGUN::nessus.cao.dec.com::Mayne | Wake up, time to die | Thu Feb 06 1997 22:59 | 13 | |
On the firewall I just installed, the customer preferred the "keep 'em guessing" approach. The telnet proxy is disabled, but the "you cannot use this" message has been replaced by <html> <body> The Web server is down. </body> </html> Try to telnet, get a Web server. 8-) PJDM | |||||