138 | Chapter 8 - IntraGuard Firewall Configuration |
|
|
Security Policies at a Glance:
The following chart shows how each of the 31 protocols is treated by each of the five sets of security policies. The protocol BGPUse, for example, is assigned the security policy None by the Blocked policy set, but it is assigned the security policy Both by the Open policy set.
|
|
|
|
|
|
|
|
|
|
|
| SECURITY POLICY |
| ||
|
| PROTOCOL | Blocked | Strict | Standard | Lenient | Open |
|
|
|
|
|
|
|
|
|
| BGPUse | None | None | None | Both | Both |
|
| BSDUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| CompatiViewUse | None | Out | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| DNSUse | None | Out | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| FTPUse | None | Out | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| H323Use | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| ICMPUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| IPSecUse | None | Out | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| IRCUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| LPRUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| MailUse | None | Out | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| NFSUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| NetBIOSUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| NewsUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| NonIPUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| OSPFUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| POPUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| RIPUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| RealAudioUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| SunRPCUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| TelnetUse | None | Out | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| TFTPUse | None | Out | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| TunnelUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| WebUse | None | Out | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| XWinUse | None | None | None | In | Both |
|
|
|
|
|
|
|
|
|
| ISAKMPUse | None | Out | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| GopherUse | None | Out | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| NTPUse | None | None | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| OtherTCPUse | None | None | Out | Out | Both |
|
|
|
|
|
|
|
|
|
| OtherUDPUse | None | None | Out | Both | Both |
|
|
|
|
|
|
|
|
|
| OtherUse | None | None | Out | Both | Both |
|
|
|
|
|
|
|
|
