Dennis:
While I don't know about Compuserve, I've done some research on AOL.
When using it through TCPIP, you will need to allow outgoing TCP
connections to port 5190, to the host aol.americaonline.com. (even AOL
email will go through this port, and be converted to SMTP on the remote
end if need be).
Of course, this hostname has multiple IP addresses assoiciated with it,
so Jens' suggestions would apply. However, I wouldn't suggest letting
your firewall trust untrusted name servers out on the net for purposes
of figuring out which external hosts should be connected to - this is a
security risk. I would always use the "nslookup" method, and hardcode
these ip addresses into your firewall security policy.
- Brian
Jens Andersen wrote:
>
> Dennis,
>
> It is not clear whether AOL and CompuServe use unique ports for all
> traffic: For instance, sending AOL e-mail is likely to use SMTP port
> which you may not want to disable.
>
> A sure way would be to test for destination.
> For instance, it's known that CompuServe users accessing it via
> Internet connect to gateway.compuserve.com. Similarly, AOL users will
> probably make connections to certain computers in aol.com domain.
>
> If a filter was intelligent enough to recognize domain names vs. IP
> ports or IP numbers, you could program "aol.com" into it. In your
> case, you can do NSLOOKUP on gateway.compuserve.com and enter all IP
> resolutions for that address (possibly only one) into your filter.
>
> I just tried it:
>
> C:\>nslookup gateway.compuserve.com
> Name: arl-gw06.compuserve.com
> Addresses: 149.174.216.92, 149.174.216.93, 149.174.216.94,
> 149.174.216.95, 149.174.216.96, 149.174.216.97,
> 149.174.216.86, 149.174.216.87, 149.174.216.89,
> 149.174.216.90, 149.174.216.91
> Aliases: gateway.compuserve.com
>
> Alternatively, you could use software designed to recognize domains by
> name and block traffic on this criteria. LittleBrother
> http://www.littlebrother.com is one such product.
>
> Good luck with your task,
>
> Jens Andersen.
>
> On 10 Apr 97 at 15:28, Dennis Fanshaw wrote:
>
> > Date: Thu, 10 Apr 1997 15:28:07 -0400
> > From: Dennis Fanshaw <dfanshaw @
webserve .
net>
> > To: firewalls @
GreatCircle .
COM
> > Subject: questions about AOLand Compuserve software port use.
>
> > Can anyone tell me what port numbers the AOL and compuserve software
> > uses when accessing thier services over the internet???
> >
> > I'm working on some packet filters for a client and I know they have a
> > few users making use of the AOL and compuserve software.
> >
> >
> > Thanks,
> >
> > Dennis Fanshaw
> > dfanshaw @
webserve .
net
> >
>
> Jens Andersen/Sales Manager
> Kansmen Corporation
> Tel: 408.263.9881 ext 107 Fax: 408.263.9883
> http://www.kansmen.com E-mail: jens @
kansmen .
com
> 546 Valley Way, Milpitas California 95035, USA
> See CNN's and c/net's review of LittleBrother:
> http://www.cnet.com/Content/Reviews/Hands/021797/lilbro.html
> http://www.cnn.com/TECH/9703/04/computer.spies/index.html
> Hot Seat interview about LittleBrother:
> http://www.packet.com/packet/hotseat/97/08/index4a.html
>
> Go make it a great day!
--
===================================================================
Brian Connolly brian @
us .
checkpoint .
com
Business Development Engineer 415.562.0400, ext 252
Check Point Software Technologies fax 415.562.0410
References:
|
|
