General discussion

Locked

NT Port assignments

By netadmin ·
I have a firewall that splits my environment up into 3 networks, the Internet, Intranet and the secured server side or DMZ. Servers located on the SSN or DMZ side can be accessed from the internet via web browsing.

I have some software that resides on the SSN of the firewall. This software has the ability to act as a host for databases that are located and served from the intranet side of my firewall.

Trying to access databases with this client causes the client to requests from NT the next available tcp/ip port for use(Dynamic). Opening up all ports on my firewall to accomadate this type of activity defeats the purpose of my firewall and I have been told that the client software cannot be modified to force it to request the same port over and over.

Now to the question.

Is there away that NT can be forced to always give the same predetermined port whenever this client software asks for the next available port?

This conversation is currently closed to new comments.

8 total posts (Page 1 of 1)  
| Thread display: Collapse - | Expand +

All Comments

Collapse -

NT Port assignments

by naten In reply to NT Port assignments

Info request:
Can you divulge the client app? In my configuation of services for firewalls I have found that indeed a service can make an outbound request on any available port, but the port that they are attempting to connect to is the real critical path. Are you sure you're not confusing the two?

Collapse -

NT Port assignments

by naten In reply to NT Port assignments

Sorry, should have not been an answer, just a comment.

Regards.

Collapse -

NT Port assignments

by netadmin In reply to NT Port assignments

Poster rated this answer

Collapse -

NT Port assignments

by Conrad In reply to NT Port assignments

We do not know a truth without knowing its cause.

- Aristotle

Collapse -

NT Port assignments

by netadmin In reply to NT Port assignments

The question was auto-closed by TechRepublic

Collapse -

NT Port assignments

by cavedweller In reply to NT Port assignments

you should be able to setup a rule to allow trusted communication between the two machines and relax the ports a little. you can still block ports for services you don't want accessed. you should be able to predict which block of ports the database will use based on the first selection and upen up a small block from there.

Collapse -

NT Port assignments

by netadmin In reply to NT Port assignments

The question was auto-closed by TechRepublic

Collapse -

NT Port assignments

by netadmin In reply to NT Port assignments

This question was auto closed due to inactivity

Back to Windows Forum
8 total posts (Page 1 of 1)  

Related Discussions

Related Forums