Jump to:navigation, search
Wiki

Services

From Securepoint Wiki











































Services of the Packetfilter

Last adaptation to the version: 12.7.2

New:

notemptyThis article refers to a Beta version

Access: UTM-IP:Port or UTM-URL:Port
Port as configured at Network / Appliance Settings / Webserver
Default-Port: 11115
i.e.: https://utm.ttt-point.de:11115
Default: https://192.168.175.1:11115 Firewall Services

In dieser Seite werden die Variablen für unterschiedliche Sprachen definiert.
Diese Seite wird auf folgenden Seiten eingebunden






| Edit service }}












Services

  • Menu call: Firewall Services
    • notemptyNew as of v12.7.2:All ICMP services are available for IPv4 and IPv6. The IPv6 services start with icmpv6- instead of icmp-. Services UTMuser@firewall.name.fqdnFirewall Menu Services


    Add / edit services

    Add / edit services

    If a service does not exist, it can be created with Add object.
    Depending on the protocol used, further settings can be made:

    • Ports (TCP and UDP)
    • Packet types (ICMP)
    • Protocol type (gre)













    Add service UTMuser@firewall.name.fqdnFirewallServices
    The name of the service and the protocol must be specified in each case.
    Add service UTMuser@firewall.name.fqdnFirewallServices
    With the tcp and udp protocols, sharing can be restricted to a single destination port or port ranges. Source ports can be any (None), a single port or a port range.
    Edit service UTMuser@firewall.name.fqdnFirewallServices
    If an existing service is to run on a different port, the service can be edited and the port changed.



    Service groups

    Service groups

    Services can be grouped together in service groups. Here, too, there are already predefined groups that can be added to and changed. Detailed display by clicking on the button .

    notemptyUpdated to v12.7.2: The Windows domain service group has been expanded.
    Services:
        domain-tcp Destination ports: 53
        domain-udp Destination ports: 53
        ldap-tcp Destination ports: 389
        ldap-udp Destination ports: 389
      ldap-ssl Destination ports: 636
        ms-ds Destination ports: 445
        netbios-tcp Destination ports: 139
        netbios-udpDestination ports: 137:138
      netbios-rpc Destination ports: 135
      w32time Destination ports: 123
        kerberos-tcp Destination ports: 88
        kerberos-udp Destination ports: 88
      kerberos-password-change-tcp Destination ports: 464
      kerberos-password-change-udp Destination ports: 464
      ldap-gc Destination ports: 3268
      ldap-gc-ssl Destination ports: 3269
  • The changes only take effect with a new installation, current configurations are not changed.

    • notemptyNew from v12.7.2: There is a service group called sp-backup that enables the use of Securepoint Unified Backups.
    Services:
      sp-backup-portal Destination ports: 8086:8087
      sp-backup-vault Destination ports: 2546


    Example: The group default-internet contains, for example, the services:

    Icon Name Protocol Edit service group UTMuser@firewall.name.fqdnFirewallServices
    domain-udp udp Port 53
    ftp tcp (ftp) Port 21
    http tcp Port 80
    https tcp Port 443
    icmp-echo-req icmp Pakettyp 8

    Add/remove service from a service group

    • Clicking in the click box selects the desired service and thereby adds it.
    • Clicking the button creates a new service and then adds it to the service group.
    • A service is removed from the service group by clicking on .
    Retrieved from "https://wiki.securepoint.de/index.php?title=UTM/RULE/Dienste&oldid=98031"