+ Post New Thread
Results 1 to 9 of 9
Internet Related/Filtering/Firewall Thread, Cisco ASA 5505 in Technical; Hi Guys, Well the school will be using PS Financials from 1st April and they have sent the school a ...
  1. #1
    staningrimsby's Avatar
    Join Date
    Jan 2013
    Location
    Grimsby
    Posts
    143
    Thank Post
    5
    Thanked 4 Times in 4 Posts
    Rep Power
    4

    Cisco ASA 5505

    Hi Guys,

    Well the school will be using PS Financials from 1st April and they have sent the school a copy of the pre-installation booking form
    I have noticed on the form that the following ports need to be opened for it to work;

    TCP Ports,

    • 135 for DTC
    • 777 for Licence Service
    • 80 for Web Portal (this should be ok as its the HTTP port)
    • 1433 for SQL


    Is there any way I can check these ports are open as I have no experience with firewalls so not to sure about this, the server connects to the firewall via ASDM but Im not over sure what Im supposed to be looking for until I get my head round it.

    Regards
    Stan.
    Last edited by staningrimsby; 14th February 2013 at 05:38 PM.

  2. #2

    twin--turbo's Avatar
    Join Date
    Jun 2012
    Location
    Carlisle
    Posts
    2,334
    Thank Post
    1
    Thanked 381 Times in 340 Posts
    Rep Power
    150
    Which way do they need to be open?

    Rob

  3. #3


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    Quote Originally Posted by staningrimsby View Post

    Is there any way I can check these ports are open as I have no experience
    Either telnet through the FW on the ports shown (to the correct target) or issue
    Code:
    show running-config
    on the ASA

  4. #4

    twin--turbo's Avatar
    Join Date
    Jun 2012
    Location
    Carlisle
    Posts
    2,334
    Thank Post
    1
    Thanked 381 Times in 340 Posts
    Rep Power
    150
    Quote Originally Posted by CyberNerd View Post
    Either telnet through the FW on the ports shown (to the correct target) or issue
    Code:
    show running-config
    on the ASA
    interpriting show run could be fun on an ASA..

    ASDM will have the firewall page but one would realy need to see a screen shot of it to start advising on how it is set up and how to adjust it. There is a packet tracer in ASDM though which will tell you what if anything is going to block the traffic.

    As a starting point for learning firewalling the ASA is like learning to fly starting with a space shuttle rather than a Cessna LOL...

    Rob

  5. #5

    Join Date
    Jan 2009
    Location
    England
    Posts
    1,524
    Thank Post
    301
    Thanked 304 Times in 263 Posts
    Rep Power
    83
    Quote Originally Posted by staningrimsby View Post
    Hi Guys,

    Well the school will be using PS Financials from 1st April and they have sent the school a copy of the pre-installation booking form
    I have noticed on the form that the following ports need to be opened for it to work;

    TCP Ports,

    • 135 for DTC
    • 777 for Licence Service
    • 80 for Web Portal (this should be ok as its the HTTP port)
    • 1433 for SQL


    Is there any way I can check these ports are open as I have no experience with firewalls so not to sure about this, the server connects to the firewall via ASDM but Im not over sure what Im supposed to be looking for until I get my head round it.

    Regards
    Stan.
    They only need to be opened internally, unless you're expecting the PSF client to need access from the outside world? Unless you have some interesting network design with an ASA in front of your servers, I imagine the ASA sits in front of your internet connection. In which case you only need to ensure those ports are open on the Windows firewall (or similar) on the PSF server

  6. #6


    Join Date
    Jan 2006
    Posts
    8,202
    Thank Post
    442
    Thanked 1,032 Times in 812 Posts
    Rep Power
    339
    Quote Originally Posted by twin--turbo View Post
    interpriting show run could be fun on an ASA..

    ASDM will have the firewall page but one would realy need to see a screen shot of it to start advising on how it is set up and how to adjust it. There is a packet tracer in ASDM though which will tell you what if anything is going to block the traffic.

    As a starting point for learning firewalling the ASA is like learning to fly starting with a space shuttle rather than a Cessna LOL...

    Rob
    ASA is actually pretty intuitive, compared to say - iptables and the ASDM java interface couldn't make things simpler, but when it comes to checking and implementing configs CLI wins everytime.

  7. #7
    staningrimsby's Avatar
    Join Date
    Jan 2013
    Location
    Grimsby
    Posts
    143
    Thank Post
    5
    Thanked 4 Times in 4 Posts
    Rep Power
    4
    I havnt spoken to the company yet or met them so I'm as much in the dark as you guys im afraid, i just wondered if anyone new of a guide to show
    me how to set these up as I dont want to look a PLEB if they ask me on-site.

    Is there any software or report that could be rin to tell me what ports are open ???
    Last edited by staningrimsby; 14th February 2013 at 07:24 PM.

  8. #8

    Join Date
    Jan 2009
    Location
    England
    Posts
    1,524
    Thank Post
    301
    Thanked 304 Times in 263 Posts
    Rep Power
    83
    Well I've setup PSF (and still run it) and I can tell you that those ports aren't open on our internet facing firewalls . Certainly open on the PSF server though

  9. #9

    twin--turbo's Avatar
    Join Date
    Jun 2012
    Location
    Carlisle
    Posts
    2,334
    Thank Post
    1
    Thanked 381 Times in 340 Posts
    Rep Power
    150
    Quote Originally Posted by CyberNerd View Post
    ASA is actually pretty intuitive, compared to say - iptables and the ASDM java interface couldn't make things simpler, but when it comes to checking and implementing configs CLI wins everytime.
    I like IPTABLES was using it for 10 years before Moving to the ASA... Got a 877W as my home router running AdvEnt so I have a similar firewall to the ASA..



    Anyway, I think as others have mentioned that the document probably actual refers to the server firewall and not the Internet firewall

    Rob

SHARE:
+ Post New Thread

Similar Threads

  1. URL monitoring on a Cisco ASA
    By niloc in forum Wired Networks
    Replies: 4
    Last Post: 6th July 2011, 10:24 PM
  2. Cisco 5520 ASA
    By bandit in forum Wireless Networks
    Replies: 1
    Last Post: 19th November 2010, 04:48 PM
  3. cisco ASA 5505 and SBS 2003
    By workhardplayharder in forum How do you do....it?
    Replies: 2
    Last Post: 25th June 2010, 05:13 AM
  4. TS inside Cisco ASA firewall
    By BigBadVinny in forum Wireless Networks
    Replies: 5
    Last Post: 15th June 2007, 08:53 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •