Firewalls: RE: PPTP & FW-1

Firewalls
(August 1997)

Indexed By Thread: [Previous] [Next]

Subject:	RE: PPTP & FW-1
From:	"Jarmon, Don R" <drjarmon @ ingr . com>
Date:	Wed, 6 Aug 1997 06:41:47 -0500
To:	Firewalls @ GreatCircle . COM

Microsoft's PPTP uses Port 1723/tcp as the control port and Protocol ID
47 / GRE

> ----------
> From: 	snorthc @
 nswc .
 navy .
 mil[SMTP:snorthc @
 nswc .
 navy .
 mil]
> Sent: 	Tuesday, August 05, 1997 6:49 AM
> To: 	Firewalls @
 GreatCircle .
 COM
> Subject: 	Re: PPTP & FW-1
> 
> >I'm attempting to setup a FW-1 filter to support PPTP.
> >I'm using FW-1 3.0a on Solaris.
> >
> >PPTP is not defined, how do I seutp a fitler just for PPTP not all
> IP?
> >
> >Thanks In Advance
> >Bert Carroll
> 
> Hmmm, we did this in class last week, its not as GUI as one
> might think! Try:
> 
> Define service pptp
> TCP 5678 "control"
> 
> Define service, other, match IP_P = 47
> 
> Define service, other
> match IP_P = 47, ([20:2, b]) & 0xEF7F = 0x2001, [22:2, b] = 0x800
> 
> Maybe that will get you close :)
>

Indexed By Date	Previous:	CISCO Configuration!! From: "Azhar H. Chowdhury" <azhar @ citechco . net>
Indexed By Date	Next:	Re: Risks of enable RIP... From: Eric Vyncke <evyncke @ cisco . com>
Indexed By Thread	Previous:	Re: PPTP & FW-1 From: snorthc @ nswc . navy . mil (Stephen Northcutt - CD2S)
Indexed By Thread	Next:	RE: PPTP & FW-1 From: Russ <Russ . Cooper @ RC . on . ca>