As of July 12, 2006 the following ports are blocked in the access-lists indicated. The "w/ex" means there are exceptions configured to allow certain traffic through on these ports.
Description |
Port |
Border Firewall |
Resnet Firewall |
Reserved |
0 |
tcp |
No |
Reserved |
1 |
tcp |
no |
RJE |
5 |
udp |
udp |
systat |
11 |
tcp |
tcp |
netstat |
15 |
tcp |
tcp |
chargen |
19 |
tcp/udp |
|
SMTP |
25 |
tcp *w/ex, see smpt white-list |
|
whois |
43 |
tcp |
tcp |
tftp |
69 |
udp |
udp |
TFTP |
69 |
udp |
udp |
finger |
79-in |
tcp |
No |
LINK |
87 |
tcp |
tcp |
supdup |
95 |
tcp |
tcp |
****swift-rvf |
97 |
Yes |
No |
linuxconf |
98 |
tcp |
No |
*****csnet-ns |
105 |
Yes |
No |
RPC |
111 |
tcp/udp |
No |
nntp |
119 |
tcp *w/ex |
|
loc-serv/epmap |
135 |
tcp/udp |
|
Netbios Name/Samba |
137 |
tcp/udp |
Yes udp only w/ex |
Netbios Datagram/Samba |
138 |
tcp/udp |
Yes udp only w/ex |
Netbios Session/Samba |
139 |
udp/udp |
Yes tcp only w/ex |
NeWS |
144 |
tcp |
Yes |
SNMP |
161 |
udp |
Yes w/ex |
SNMP-T |
162 |
udp |
Yes w/ex |
xdmcp |
177 |
udp |
Yes |
IPX tunnel |
213 |
udp |
Yes |
CIFS (Windows 2000) |
445 |
tcp |
|
biff |
512 |
udp |
Yes |
rwho |
513 |
udp |
Yes |
rexec |
512 |
tcp |
Yes exec |
rlogin |
513 |
tcp |
Yes login |
syslog |
514 |
udp |
Yes |
rsh |
514 |
tcp |
No |
printer |
515 |
tcp |
No |
route |
520 |
udp |
Yes rip |
netwall |
533 |
udp |
Yes |
uucp |
540 |
tcp |
Yes |
remotefs |
556 |
tcp |
No |
agentx |
705 |
tcp |
No |
socks |
1080 |
tcp/udp |
|
SQL Server |
1433 |
tcp |
Yes |
SQL Server monitor |
1434 |
tcp |
Yes |
Oracle SQL |
1521 |
tcp |
|
Openwin |
2000 |
no |
yes w/ex |
FTP-d |
2023 |
No |
No |
NFS |
2049 |
tcp/udp |
Yes w/ex |
listen |
2766 |
Yes |
Yes |
MySQL |
3306 |
tcp |
Yes w/ex |
**Xwindows |
6000 |
tcp/udp *waiting for vpn |
Yes w/ex |
**Xwindows |
6001 |
tcp/udp *waiting for vpn |
Yes w/ex |
Firewall exceptions
Description |
Requestor/contact info |
Date requested |
BF exception to acs2 nntp 119 |
|
9/5/2002 |
BF exception from subnet 205.149.104.X for ports 445,1433,& 1434 to host 128.187.11.26. |
Brett Hill |
9/5/2002 |
BF exception from subnet 205.149.104.X to 128.187.11.5 for port 111 |
Brett Hill |
9/5/2002 |
BF exception from BYUI 157.201.145.53,124 from BYUH 216.228.252.128/25from LDSBC 198.60.73.190,191,192 to illiad.lib.byu.edu (128.187.233.109, 108) for ports 135-137, 139, 445 and 1433 |
Ranny LacanientaLibrary (801) 422-6278 |
9/10/2002 |
Border firewall exception from 208.48.160.*, 208.48.161.* to 128.187.60.251 for ports 135-140. |
David M Billings [mailto:dmb75@email.byu.edu] |
9/11/2002 |
border firewall exception from Network subnet: 64.75.143.* to enforcer.byu.edu 128.187.21.13 for rexec port 512 |
Hans Douma |
10/15/2002 |
ResNet exception from 128.187.223.0, 128.187.225.0 to campus |
Unknown |
Unknown |
BF exception from |
Dan Evans 2-6638 |
11/13/2002 |
BF exception from Farms from 128.187.186.188 to 208.45.246.20 for port 1433 |
paul_brower@andersonroofing.com or Brent Hall |
1/27/2003 |
BF firewall exception for port 1433 illiad.byu.ed 128.187.233.109 to BYUH: 216.228.252.128/25 BYUI: 157.201.145.30 157.201.145.53 157.201.154.24 LDSBC: Karen's Computer: 198.60.73.190 Staff Computer: 198.60.73.191 Circulation Desk: 198.60.73.192 |
Brett Hill |
1/27/2003 |
BF exception: allow from |
Dan Evans dan_evans@byu.edu |
1/30/03 |
exception for CHQ from 198.60.42.129-254 to illiad.lib.byu.edu (128.187.233.109) and illiadtest.lib.byu.edu (128.187.233.108) for ports 135-137,139,445,1433. |
Ranny Lacanienta |
2/12/2003 |
exception to 128.187.233.120 on ports 135,137,138,139 and 445 over TCP and UDP from 157.201.145.x |
Ryan Price |
3/6/2003 |
firewall exception from 64.80.110.217 to CABOT (128.187.99.172) on port 1521 |
Mark Hales |
3/13/2003 |
firewall exception from 216.250.76.226 to conrs8.byu.edu 128.187.192.228 for port 1521.firewall exception from 200.78.64.211 to conrs8.byu.edu 128.187.192.228 for port 1521 |
adam_egbert@byu.edu |
3/13/2003 |
firewall exception for Jim from everywhere to tinic.byu.edu on port 1521 |
Jim Logan 6551 |
3/13/2003 |
firewall exception from 208.178.192.230 and 231 to 128.187.193.246 on port 1521 |
James Barrett |
3/14/2003 |
firewall exception for 128.187.215.157 (SP-BKST.byu.edu) from the following IP address: 199.82.246.241 for port 1433. |
Dan Evans |
7/18/2003 |
Firewall exception for 128.187.233.123 to 157.201.145.x for ports 135, 136, 137, 138, 139, 445 tcp and udp. |
Ryan Price |
8/1/2003 |
Firewall exception 68.251.166.0/24 to 128.187.70.6 tcp
port sqlnet (Oracle) |
Chris Fruge |
9/7/2005 |
Additional ports being blocked in Resnet Firewall
Port |
Description |
Protocol |
swift-rvf |
97 to 128.187.22.200 |
only tcp |
csnet-ns |
105 to 128.187.22.200 |
only tcp |
remotefs |
556 |
tcp |
135 |
135 |
tcp 3/25/2004 |
445 |
445 |
tcp 3/25/2004 |
1025 |
1026 - 1027 |
udp 3/25/2004 |
2745 |
2745 |
tcp 3/25/2004 |
3127 |
3127 |
tcp 3/25/2004 |
6129 |
6129 |
tcp 3/25/2004 |
? |
6003-6025 |
tcp/udp |
? |
43981 |
udp |
? |
43982 |
udp |
Last Modified: 07/14/2006 08:44:23 AM