• Subject: TCPIP port restriction for network security
  • From: mcrump@xxxxxxxxxxxxxxxx
  • Date: Tue, 23 Jan 2001 09:02:36 -0500



I need some opinions - ok, dumb statement :-)

For security purposes our firewall has most of the ports closed to the outside
world.  I know when we started some outside work with a  consulting company I
had to pull teeth to get port 1352 (Notes) open for some people in our company.

My question is, and I realize this isn't necessarily AS/400 (umm...iSeries)
related but what do people do and why with regards to their firewall and ports?
Is it that bad to really open up a port across the board?  Let me back up a
little.  We are starting to use SameTime with the same consulting firm and it
has a chat function.  This chat function does not by default use port 80.  So,
my options are either open up the port or investigate the changing of the
default port.  Typically, I hate to mess around with changing default ports
because it always seems to cause me some sort of problem later.

Any thoughts/ideas/opinions from you security and network minded people?  If I
go to my network people all they do is give me grief.  They may be right but I'd
like to hear what anyone else has to say.

Thanks.



Michael Crump
Saint-Gobain Containers
1509 S. Macedonia Ave.
Muncie, IN  47302
(765)741-7696
(765)741-7012 f
(800)428-8642


+---
| This is the Midrange System Mailing List!
| To submit a new message, send your mail to MIDRANGE-L@midrange.com.
| To subscribe to this list send email to MIDRANGE-L-SUB@midrange.com.
| To unsubscribe from this list send email to MIDRANGE-L-UNSUB@midrange.com.
| Questions should be directed to the list owner/operator: david@midrange.com
+---

This thread ...

Follow-Ups:

Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2019 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].