+ Post New Thread
Results 1 to 5 of 5
Internet Related/Filtering/Firewall Thread, Firewalls and Managed Sophos in Technical; Happy New Year! As it's an InSeT day, and I've had two weeks of blue sky thinking time, I've got ...
  1. #1
    BatchFile's Avatar
    Join Date
    Aug 2007
    Location
    Cumbria
    Posts
    948
    Thank Post
    544
    Thanked 128 Times in 106 Posts
    Rep Power
    60

    Firewalls and Managed Sophos

    Happy New Year!

    As it's an InSeT day, and I've had two weeks of blue sky thinking time, I've got a quick question - someone HAS to have done it, surely?!

    Following a nasty virus outbreak last term, I'd like to run with firewalls up on the workstations to help prevent future problems, or at least make them easier to manage if we get one; security in layers and all that.

    Cutting to the chase, what do I need to set firewall exception wise in Group Policy to allow Sophos management console to work through the firewalls? anyone?

  2. #2

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,262
    Thank Post
    242
    Thanked 1,572 Times in 1,252 Posts
    Rep Power
    340
    Have a look here

  3. Thanks to Michael from:

    BatchFile (4th January 2010)

  4. #3

    FN-GM's Avatar
    Join Date
    Jun 2007
    Location
    UK
    Posts
    16,054
    Thank Post
    888
    Thanked 1,729 Times in 1,492 Posts
    Blog Entries
    12
    Rep Power
    454
    Quote Originally Posted by TonyRidal View Post
    Happy New Year!

    As it's an InSeT day, and I've had two weeks of blue sky thinking time, I've got a quick question - someone HAS to have done it, surely?!

    Following a nasty virus outbreak last term, I'd like to run with firewalls up on the workstations to help prevent future problems, or at least make them easier to manage if we get one; security in layers and all that.

    Cutting to the chase, what do I need to set firewall exception wise in Group Policy to allow Sophos management console to work through the firewalls? anyone?
    It should be fine as long as your clients can access the shares on the server.

    All sophos would need is access to the shares and a DC to authenticate the credentials. also it needs port 8192 8193 & 8194

    Just regularly check that Sophos is updating.

  5. #4

    Michael's Avatar
    Join Date
    Dec 2005
    Location
    Birmingham
    Posts
    9,262
    Thank Post
    242
    Thanked 1,572 Times in 1,252 Posts
    Rep Power
    340
    To specify the GPO exceptions, it would read something like this:

    Code:
    %programfiles%\Sophos\Remote Management System\RouterNT.exe:”*”:enabled:Sophos
    And for the port:

    Code:
    8192:TCP:”*”:enabled:Sophos Port

  6. #5
    lukang's Avatar
    Join Date
    Jun 2009
    Location
    nonya
    Posts
    16
    Thank Post
    0
    Thanked 4 Times in 2 Posts
    Blog Entries
    1
    Rep Power
    11
    Not trying to change the topic much here but when trying to block against zero day threats you should get HIPS enabled properly and not as much to do with the firewall. This would have given you a 100% level of protection for the registry of your windows systems.

    By default HIPS has three boxes checked to allow you the ability to slowly see what HIPS has seen then you use the authorization selection two selections below the HIPS selection and you can then decide what to authenticate.

    After doing this you will de-select or Un-check Alert Only in the HIPS selection leaving the other two checked. This setting blocks newly launched processes (Even good ones ) from making changes to your registries without you first authorizing them.

    Even if it is a Brand New virus that Nobody is detecting for!

SHARE:
+ Post New Thread

Similar Threads

  1. Replies: 3
    Last Post: 9th February 2009, 10:00 PM
  2. Setup firewalls on staff laptops
    By e_g_r in forum How do you do....it?
    Replies: 4
    Last Post: 15th January 2009, 12:56 PM
  3. Cisco firewalls
    By nicholab in forum Wireless Networks
    Replies: 1
    Last Post: 14th July 2008, 12:38 PM
  4. Firewalls
    By GrumbleDook in forum Blue Skies
    Replies: 2
    Last Post: 21st July 2007, 12:40 PM
  5. Server firewalls inside the perimeter
    By ITWombat in forum Wireless Networks
    Replies: 5
    Last Post: 12th July 2006, 09:33 AM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •