Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 2 subscribers
  • Views 4418 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Anti-port scan

_Wolff_
Hello i'm new on Sophos utm,

I run with sopho UTM 9.310-11
I'm not using  dnat or snat port, nothing supposed to be open in my utm

but when I scan with grc.com (shieldups) with common ports, I've 2 ports not Stealth but closed:
port 135 and port 138 with drop traffic

and if I use Reject Traffic it's worst, 14 ports are closed and not stealth
I can correct this problem to increase my security ? 

thanks you!


This thread was automatically locked due to age.
Parents
  • 0
    Hi, Wolff, and welcome to the User BB!

    "Closed" means the packet hit a firewall rule with "Reject."  Since the firewall will automatically drop any traffic not specifically allowed, it sounds like you only need rules for outbound traffic.  The connection tracker will automatically allow in the responses to requests sent from the UTM to the Internet.

    Cheers - Bob
Reply
  • 0
    Hi, Wolff, and welcome to the User BB!

    "Closed" means the packet hit a firewall rule with "Reject."  Since the firewall will automatically drop any traffic not specifically allowed, it sounds like you only need rules for outbound traffic.  The connection tracker will automatically allow in the responses to requests sent from the UTM to the Internet.

    Cheers - Bob
Children
No Data