Product specifications
Chapter 5: System Security Efficient Networks
®
Router family
Technical Reference Guide
Page 5-32 Efficient Networks
®
# NNTP tcp
remote ipfilter insert output accept -p tcp -sp 1024:65535 -dp
119 internet
# IMAP2 tcp/udp
remote ipfilter insert output accept -p tcp -sp 1024:65535 -dp
143 internet
# certain other non-privileged ports to non-privileged ports
remote ipfilter insert output accept -p tcp -sp 1024:65535 -dp
1024:65535 internet
# Allow NTP, who, Kali, CuSeeMe out to the WAN
# NTP
remote ipfilter insert transmit accept -p udp -dp 123 internet
remote ipfilter insert receive accept -p udp -sp 123 internet
# who
remote ipfilter insert input accept -p udp -sp 513 -dp
1024:65535 internet
remote ipfilter insert output accept -p udp -dp 513 -sp
1024:65535 internet
remote ipfilter insert input accept -b -p udp -sp 2213 -dp
1024:65535 internet
remote ipfilter insert output accept -b -p udp -dp 2213 -sp
1024:65535 internet
remote ipfilter insert input accept -p udp -sp 6666 -dp
1024:65535 internet
remote ipfilter insert output accept -p udp -dp 6666 -sp
1024:65535 internet
remote ipfilter insert input accept -p udp -sp 7648 -dp 7648
internet
remote ipfilter insert output accept -p udp -dp 7648 -sp 7648
internet
# RealAudio
remote ipfilter insert input accept -p udp -dp 7070 internet
remote ipfilter insert output accept -p udp -sp 7070 internet
# traceroute
remote ipfilter insert input accept -p udp -sp 1024:65535 -dp
33434:33500 internet
remote ipfilter insert output accept -p udp -sp 1024:65535 -dp
33434:33500 internet
### Deny any other traffic
remote ipfilter append input drop internet
remote ipfilter append output drop internet