Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 2 replies
  • Subscribers 26 subscribers
  • Views 5238 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Understanding 'Services'

shred

I'm trying to make my firewall rules more specific in terms of the 'Services' each firewall rule allows instead of using 'All' but I want to make sure I understand how the default Sophos XG services are setup.

Looking at the 'HTTP' service under 'Host and Services -> Services' page, it shows that the 'HTTP' protocol is 'TCP/UDP' and under details it shows 'TCP (1:65535) / (80)'. Does this mean if I use this 'HTTP' service, it will allow any TCP port between 1 to 65535 and UDP port 80 outbound?

If so, assuming I applied this to a firewall rule, it wouldn't be much different than running 'Any' as it's allowing basically every port (1 through 65535) access outbound - would this be an accurate assumption?

Just trying to figure out how I'm going to go about determining which ports to allow access outbound... starting to think it might be more work than it's worth for a fairly basic home network. If nothing else, it's always good to learn.

Thanks!



This thread was automatically locked due to age.
Parents
  • +1

    Hi  

    The destination port is where you specify the service port you would like to open up. The source port of 1:65535 accounts for the private ports that the packet would originate from.

    For example, for a LAN-PC that is trying to reach an http website: source would be the LAN-PC therefore would produce a private port within 1:65535 range and the destination port would be port 80. 

    This format does not open up all tcp ports 1:65535, therefore not equivalent to 'Any' service, but only the destination port/s that you specify. In this example it would be port 80.

    Please let me know if you have further clarification.

    Thanks,
    Karlos

  • 0 in reply to Karlos

    Ah, okay - so the left side is the source port and right side is destination port. I guess it was a little misleading for me because where you apply the services on the ‘Services’ section is under the ‘Destination & Services’ part of the firewall rule page, but I guess it does say Destination AND Services. :)

Reply
  • 0 in reply to Karlos

    Ah, okay - so the left side is the source port and right side is destination port. I guess it was a little misleading for me because where you apply the services on the ‘Services’ section is under the ‘Destination & Services’ part of the firewall rule page, but I guess it does say Destination AND Services. :)

Children
No Data