Jump to:navigation, search
Wiki

Services

From Securepoint Wiki

































De.png
En.png
Fr.png









Services of the Packetfilter

Last adaptation to the version: 12.7.2

New:
notempty
This article refers to a Resellerpreview
Access: UTM-IP:Port or UTM-URL:Port
Port as configured at Network / Appliance Settings / Webserver
Default-Port: 11115
i.e.: https://utm.ttt-point.de:11115
Default: https://192.168.175.1:11115 Firewall Services






| Edit service }}











Services

  • Request moved to: Firewall Services
    • notempty
    New as of v12.7.2:
    Alle ICMP-Dienste sind für IPv4 und IPv6 verfügbar. Die IPv6 Dienste beginnen mit icmpv6- anstatt icmp-.

    Services UTMuser@firewall.name.fqdnFirewall UTM v12.6 Paketfilter Dienste-en.pngMenu Dienste


    Add / edit services

    Add / edit services

    If a service does not exist, it can be created with Add object.
    Depending on the protocol used, further settings can be made:

    • Ports (TCP and UDP)
    • Packet types (ICMP)
    • Protocol type (gre)
    Add service UTMuser@firewall.name.fqdnFirewallServices UTM v12.6 Paketfilter Dienst hinzufuegen-en.png
    The name of the service and the protocol must be specified in each case.
    Add service UTMuser@firewall.name.fqdnFirewallServices UTM v12.6 Paketfilter Dienst tcp hinzufuegen-en.png
    With the tcp and udp protocols, sharing can be restricted to a single destination port or port ranges. Source ports can be any (None), a single port or a port range.
    Edit service UTMuser@firewall.name.fqdnFirewallServices UTM v12.6 Paketfilter Dienst https bearbeiten-en.png
    If an existing service is to run on a different port, the service can be edited and the port changed.















    Service groups

    Service groups

    Services can be grouped together in service groups. Here, too, there are already predefined groups that can be added to and changed. Detailed display by clicking on the button .

    notempty
    Aktualisiert zu v12.7.2:
     Die Dienstgruppe Windows-Domain wurde erweitert.
    Services:
      Tcp.svg  domain-tcp Destination ports: 53
      Udp.svg  domain-udp Destination ports: 53
      Tcp.svg  ldap-tcp Destination ports: 389
      Udp.svg  ldap-udp Destination ports: 389
    Tcp.svg  ldap-ssl Destination ports: 636
      Tcp.svg  ms-ds Destination ports: 445
      Tcp.svg  netbios-tcp Destination ports: 139
      Udp.svg  netbios-udpDestination ports: 137:138
    Tcp.svg  netbios-rpc Destination ports: 135
    Udp.svg  w32time Destination ports: 123
      Tcp.svg  kerberos-tcp Destination ports: 88
      Udp.svg  kerberos-udp Destination ports: 88
    Tcp.svg  kerberos-password-change-tcp Destination ports: 464
    Udp.svg  kerberos-password-change-udp Destination ports: 464
    Tcp.svg  ldap-gc Destination ports: 3268
    Tcp.svg  ldap-gc-ssl Destination ports: 3269
  • Die Änderungen werden nur bei Neuinstallation wirksam, aktuelle Konfigurationen werden nicht verändert.

    • notempty
    Neu ab v12.7.2:
     Es gibt eine Dienstgruppe namens sp-backup, die die Nutzung von Securepoint Unified Backups ermöglicht.
    Services:
    Tcp.svg  sp-backup-portal Destination ports: 8086:8087
    Tcp.svg  sp-backup-vault Destination ports: 2546


    Example: The group default-internet contains, for example, the services:

    Icon Name Protocol Edit service group UTMuser@firewall.name.fqdnFirewallServices UTM v12.6 Paketfilter Dienst Dienstgruppe default-internet-en.png
    Udp.svg domain-udp udp Port 53
    Tcp.svg ftp tcp (ftp) Port 21
    Tcp.svg http tcp Port 80
    Tcp.svg https tcp Port 443
    Icmp.svg icmp-echo-req icmp Pakettyp 8

    Add/remove service from a service group

    • Clicking in the click box selects the desired service and thereby adds it.
    • Clicking the button creates a new service and then adds it to the service group.
    • A service is removed from the service group by clicking on .
    Retrieved from "https://wiki.securepoint.de/index.php?title=UTM/RULE/Dienste&oldid=92791"