Maybe a stupid question but;
Why are almost all source ports in service definitions 1:65535?
In ASL version 6 source ports were mainly 1024:65535!
e.g. http:
v6
HTTP TCP 1024:65535 > 80
v7
HTTP TCP 1:65535 > 80
Also some services in v6 were more granulary defind e.g. ntp
v6
NTP UDP 123 > 123
NTP-Async UDP 1024:65535 > 123
v7
NTP TCP/UDP 1:65535 > 123
So, is it OK that unnecessary ports for some services are allowed to pass?
Thanks
This thread was automatically locked due to age.