Encrypted RPC and firewalling

• Previous message (by thread): Anyone seen this kind of problem? SIP traffic not getting to destination but traceroute does
• Next message (by thread): Encrypted RPC and firewalling
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

hi all

I would like to know how you guys handle encypted rpc across firewalls. 

We utilize an ASA platform and the DCERPC inspection cant handle encrypted RPC (which is standard in most windows 2008 and default in all communication in exchange 2010). Ciscos says: disable encryption or create "allow any" rules.

Do you limit the RPC port range on the windows systems and make "holes" in the firewall for these or do you disable RPC encryption ? 

Please share your knowledge in this area.

Best regards 

Lasse Birnbaum Jensen
Network administrator, IT-Service
University of Southern Denmark

Email: lasse at sdu.dk
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 1927 bytes
Desc: not available
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20111110/16a9ab22/attachment.bin>

• Previous message (by thread): Anyone seen this kind of problem? SIP traffic not getting to destination but traceroute does
• Next message (by thread): Encrypted RPC and firewalling
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]