[j-nsp] Firewall source-port

From: J K (jdilbert@hotmail.com)
Date: Thu Mar 28 2002 - 16:48:03 EST

Next message: Stephen Gill: "RE: [j-nsp] Firewall source-port"
Previous message: Arun: "Juniper CLI questions"
Next in thread: Stephen Gill: "RE: [j-nsp] Firewall source-port"
Reply: Stephen Gill: "RE: [j-nsp] Firewall source-port"
Reply: Jonathan Tse: "KA9Q NOS protocol number?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

If we want to allow only the telnet out from a Juniper router,
do we configure

1)"from source-port 23 then accept" or
2)"from destination-port 23 then accept"?

Let's ignore tcp-established and "from protocol" and other
matching conditions here. In this case the router is acting
as a telnet client and should choose a port greater than
1023 (or do they not) and thus choice 2 seems right to me
but most online docs say it's 1. Correct me if I am wrong.
Thanks.

Regards,
confused

_________________________________________________________________
Chat with friends online, try MSN Messenger: http://messenger.msn.com

Next message: Stephen Gill: "RE: [j-nsp] Firewall source-port"
Previous message: Arun: "Juniper CLI questions"
Next in thread: Stephen Gill: "RE: [j-nsp] Firewall source-port"
Reply: Stephen Gill: "RE: [j-nsp] Firewall source-port"
Reply: Jonathan Tse: "KA9Q NOS protocol number?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Mail actions: [ respond to this message ] [ mail a new topic ]

This archive was generated by hypermail 2b29 : Mon Aug 05 2002 - 10:42:40 EDT