Haut Précedent Suivant Titre Sommaire

Paramétrage du firewall applicatif :

Le firewall applicatif Symantec installé sur le serveur Dorade contient le paramétrage suivant :

Network Entity Report
Name: AgentsEsentry
Description:
Type: Group
NetworkEntity Member:
Name: Colombe
Description:
Type: Host
Address: 10.1.1.2
MAC Address:
NetworkEntity Member:
Name: Fleche
Description:
Type: Host
Address: 10.1.4.2
MAC Address:
====================================================
Name: Cassiopee6
Description:
Type: Host
Address: 192.168.0.8
MAC Address:
====================================================
Name: Cassiopee7
Description:
Type: Host
Address: 192.168.0.7
MAC Address:
====================================================
Name: ClientsE-Sentry
Description:
Type: Group
NetworkEntity Member:
Name: Colombe
Description:
Type: Host
Address: 10.1.1.2
MAC Address:
NetworkEntity Member:
Name: Fleche
Description:
Type: Host
Address: 10.1.4.2
MAC Address:
====================================================
Name: ClientsMessagerie
Description:
Type: Group
NetworkEntity Member:
Name: Cassiopee6
Description:
Type: Host
Address: 192.168.0.8
MAC Address:
NetworkEntity Member:
Name: Cassiopee7
Description:
Type: Host
Address: 192.168.0.7
MAC Address:
NetworkEntity Member:
Name: Portable
Description:
Type: Host
Address: 192.168.0.9
MAC Address:
====================================================
Name: ClientsNTPinterne
Description:
Type: Group
NetworkEntity Member:
Name: Colombe
Description:
Type: Host
Address: 10.1.1.2
MAC Address:
NetworkEntity Member:
Name: Dauphin
Description:
Type: Host
Address: 52.30.184.1
MAC Address:
NetworkEntity Member:
Name: Eridan
Description:
Type: Host
Address: 10.1.3.3
MAC Address:
NetworkEntity Member:
Name: Fleche
Description:
Type: Host
Address: 10.1.4.2
MAC Address:
NetworkEntity Member:
Name: GrandeOurse
Description:
Type: Host
Address: 10.1.3.2
MAC Address:
NetworkEntity Member:
Name: Loup
Description:
Type: Host
Address: 10.1.4.4
MAC Address:
NetworkEntity Member:
Name: Pegase
Description:
Type: Host
Address: 10.1.2.2
MAC Address:
NetworkEntity Member:
Name: PetiteOurse
Description:
Type: Host
Address: 10.1.4.3
MAC Address:
NetworkEntity Member:
Name: Serpent
Description:
Type: Host
Address: 10.1.4.5
MAC Address:
====================================================
Name: ClientsSamba
Description:
Type: Group
NetworkEntity Member:
Name: Cassiopee6
Description:
Type: Host
Address: 192.168.0.8
MAC Address:
NetworkEntity Member:
Name: Cassiopee7
Description:
Type: Host
Address: 192.168.0.7
MAC Address:
NetworkEntity Member:
Name: PetiteOurse
Description:
Type: Host
Address: 10.1.4.3
MAC Address:
NetworkEntity Member:
Name: Portable
Description:
Type: Host
Address: 192.168.0.9
MAC Address:
====================================================
Name: ClientsWeb
Description:
Type: Group
NetworkEntity Member:
Name: Cassiopee6
Description:
Type: Host
Address: 192.168.0.8
MAC Address:
NetworkEntity Member:
Name: Cassiopee7
Description:
Type: Host
Address: 192.168.0.7
MAC Address:
NetworkEntity Member:
Name: Portable
Description:
Type: Host
Address: 192.168.0.9
MAC Address:
====================================================
Name: Colombe
Description:
Type: Host
Address: 10.1.1.2
MAC Address:
====================================================
Name: DNSexterne1
Description:
Type: Host
Address: 194.2.0.20
MAC Address:
====================================================
Name: DNSexterne2
Description:
Type: Host
Address: 194.2.0.50
MAC Address:
====================================================
Name: DNSexterne3
Description:
Type: Host
Address: 212.46.206.2
MAC Address:
====================================================
Name: DNSexternes
Description:
Type: Group
NetworkEntity Member:
Name: DNSexterne1
Description:
Type: Host
Address: 194.2.0.20
MAC Address:
NetworkEntity Member:
Name: DNSexterne2
Description:
Type: Host
Address: 194.2.0.50
MAC Address:
NetworkEntity Member:
Name: DNSexterne3
Description:
Type: Host
Address: 212.46.206.2
MAC Address:
====================================================
Name: Dauphin
Description:
Type: Host
Address: 52.30.184.1
MAC Address:
====================================================
Name: EnsembleMachinesMaquette
Description:
Type: Group
NetworkEntity Member:
Name: Cassiopee6
Description:
Type: Host
Address: 192.168.0.8
MAC Address:
NetworkEntity Member:
Name: Cassiopee7
Description:
Type: Host
Address: 192.168.0.7
MAC Address:
NetworkEntity Member:
Name: Colombe
Description:
Type: Host
Address: 10.1.1.2
MAC Address:
NetworkEntity Member:
Name: Dauphin
Description:
Type: Host
Address: 52.30.184.1
MAC Address:
NetworkEntity Member:
Name: Eridan
Description:
Type: Host
Address: 10.1.3.3
MAC Address:
NetworkEntity Member:
Name: Fleche
Description:
Type: Host
Address: 10.1.4.2
MAC Address:
NetworkEntity Member:
Name: GrandeOurse
Description:
Type: Host
Address: 10.1.3.2
MAC Address:
NetworkEntity Member:
Name: Hercule-autorisation-10.1.3.1
Description:
Type: Host
Address: 10.1.3.1
MAC Address:
NetworkEntity Member:
Name: Hercule-externe-192.168.0.1
Description:
Type: Host
Address: 192.168.0.1
MAC Address:
NetworkEntity Member:
Name: Hercule-interco-10.1.6.1
Description:
Type: Host
Address: 10.1.6.1
MAC Address:
NetworkEntity Member:
Name: Hercule-messagerie-10.1.2.1
Description:
Type: Host
Address: 10.1.2.1
MAC Address:
NetworkEntity Member:
Name: Hercule-web-10.1.1.1
Description:
Type: Host
Address: 10.1.1.1
MAC Address:
NetworkEntity Member:
Name: Loup
Description:
Type: Host
Address: 10.1.4.4
MAC Address:
NetworkEntity Member:
Name: Pegase
Description:
Type: Host
Address: 10.1.2.2
MAC Address:
NetworkEntity Member:
Name: PetiteOurse
Description:
Type: Host
Address: 10.1.4.3
MAC Address:
NetworkEntity Member:
Name: Portable
Description:
Type: Host
Address: 192.168.0.9
MAC Address:
NetworkEntity Member:
Name: Serpent
Description:
Type: Host
Address: 10.1.4.5
MAC Address:
====================================================
Name: Eridan
Description:
Type: Host
Address: 10.1.3.3
MAC Address:
====================================================
Name: Fleche
Description:
Type: Host
Address: 10.1.4.2
MAC Address:
====================================================
Name: GrandeOurse
Description:
Type: Host
Address: 10.1.3.2
MAC Address:
====================================================
Name: Hercule
Description:
Type: Group
NetworkEntity Member:
Name: Hercule-autorisation-10.1.3.1
Description:
Type: Host
Address: 10.1.3.1
MAC Address:
NetworkEntity Member:
Name: Hercule-externe-192.168.0.1
Description:
Type: Host
Address: 192.168.0.1
MAC Address:
NetworkEntity Member:
Name: Hercule-interco-10.1.6.1
Description:
Type: Host
Address: 10.1.6.1
MAC Address:
NetworkEntity Member:
Name: Hercule-messagerie-10.1.2.1
Description:
Type: Host
Address: 10.1.2.1
MAC Address:
NetworkEntity Member:
Name: Hercule-web-10.1.1.1
Description:
Type: Host
Address: 10.1.1.1
MAC Address:
====================================================
Name: Hercule-autorisation-10.1.3.1
Description:
Type: Host
Address: 10.1.3.1
MAC Address:
====================================================
Name: Hercule-externe-192.168.0.1
Description:
Type: Host
Address: 192.168.0.1
MAC Address:
====================================================
Name: Hercule-interco-10.1.6.1
Description:
Type: Host
Address: 10.1.6.1
MAC Address:
====================================================
Name: Hercule-messagerie-10.1.2.1
Description:
Type: Host
Address: 10.1.2.1
MAC Address:
====================================================
Name: Hercule-web-10.1.1.1
Description:
Type: Host
Address: 10.1.1.1
MAC Address:
====================================================
Name: HoteHebergementSignaturesAntivirales1
Description:
Type: Host
Address: clamav.ozforces.com
MAC Address:
====================================================
Name: HoteHebergementSignaturesAntivirales2
Description:
Type: Host
Address: clamav.essentkabel.com
MAC Address:
====================================================
Name: HoteHebergementSignaturesAntivirales3
Description:
Type: Host
Address: clamav.elektrapro.com
MAC Address:
====================================================
Name: Loup
Description:
Type: Host
Address: 10.1.4.4
MAC Address:
====================================================
Name: Pegase
Description:
Type: Host
Address: 10.1.2.2
MAC Address:
====================================================
Name: PetiteOurse
Description:
Type: Host
Address: 10.1.4.3
MAC Address:
====================================================
Name: Portable
Description:
Type: Host
Address: 192.168.0.9
MAC Address:
====================================================
Name: Serpent
Description:
Type: Host
Address: 10.1.4.5
MAC Address:
====================================================
Name: ServeurDebianECP
Description:
Type: Host
Address: 138.195.130.75
MAC Address:
====================================================
Name: ServeurPackagesDebian1
Description:
Type: Host
Address: http.us.debian.org
MAC Address:
====================================================
Name: ServeurPackagesDebian2
Description:
Type: Host
Address: ftp.fr.debian.org
MAC Address:
====================================================
Name: ServeurSecurityDebian
Description: security.debian.org
Type: Host
Address: 194.109.137.218
MAC Address:
====================================================
Name: Serveurs-Maquette
Description:
Type: Group
NetworkEntity Member:
Name: Colombe
Description:
Type: Host
Address: 10.1.1.2
MAC Address:
NetworkEntity Member:
Name: Dauphin
Description:
Type: Host
Address: 52.30.184.1
MAC Address:
NetworkEntity Member:
Name: Eridan
Description:
Type: Host
Address: 10.1.3.3
MAC Address:
NetworkEntity Member:
Name: Fleche
Description:
Type: Host
Address: 10.1.4.2
MAC Address:
NetworkEntity Member:
Name: GrandeOurse
Description:
Type: Host
Address: 10.1.3.2
MAC Address:
NetworkEntity Member:
Name: Hercule-autorisation-10.1.3.1
Description:
Type: Host
Address: 10.1.3.1
MAC Address:
NetworkEntity Member:
Name: Hercule-externe-192.168.0.1
Description:
Type: Host
Address: 192.168.0.1
MAC Address:
NetworkEntity Member:
Name: Hercule-interco-10.1.6.1
Description:
Type: Host
Address: 10.1.6.1
MAC Address:
NetworkEntity Member:
Name: Hercule-messagerie-10.1.2.1
Description:
Type: Host
Address: 10.1.2.1
MAC Address:
NetworkEntity Member:
Name: Hercule-web-10.1.1.1
Description:
Type: Host
Address: 10.1.1.1
MAC Address:
NetworkEntity Member:
Name: Loup
Description:
Type: Host
Address: 10.1.4.4
MAC Address:
NetworkEntity Member:
Name: Pegase
Description:
Type: Host
Address: 10.1.2.2
MAC Address:
NetworkEntity Member:
Name: PetiteOurse
Description:
Type: Host
Address: 10.1.4.3
MAC Address:
NetworkEntity Member:
Name: Serpent
Description:
Type: Host
Address: 10.1.4.5
MAC Address:
====================================================
Name: ServeursWebInternes
Description:
Type: Group
NetworkEntity Member:
Name: Colombe
Description:
Type: Host
Address: 10.1.1.2
MAC Address:
NetworkEntity Member:
Name: GrandeOurse
Description:
Type: Host
Address: 10.1.3.2
MAC Address:
NetworkEntity Member:
Name: Pegase
Description:
Type: Host
Address: 10.1.2.2
MAC Address:
====================================================
Name: ServeursWebatteignablesServeursMaquette
Description:
Type: Group
NetworkEntity Member:
Name: HoteHebergementSignaturesAntivirales1
Description:
Type: Host
Address: clamav.ozforces.com
MAC Address:
NetworkEntity Member:
Name: HoteHebergementSignaturesAntivirales2
Description:
Type: Host
Address: clamav.essentkabel.com
MAC Address:
NetworkEntity Member:
Name: HoteHebergementSignaturesAntivirales3
Description:
Type: Host
Address: clamav.elektrapro.com
MAC Address:
NetworkEntity Member:
Name: ServeurDebianECP
Description:
Type: Host
Address: 138.195.130.75
MAC Address:
NetworkEntity Member:
Name: ServeurPackagesDebian1
Description:
Type: Host
Address: http.us.debian.org
MAC Address:
NetworkEntity Member:
Name: ServeurPackagesDebian2
Description:
Type: Host
Address: ftp.fr.debian.org
MAC Address:
NetworkEntity Member:
Name: ServeurSecurityDebian
Description: security.debian.org
Type: Host
Address: 194.109.137.218
MAC Address:
====================================================
Name: Sub-autorisation-10.1.3.0
Description:
Type: Subnet
Address: 10.1.3.0
Network Mask: 255.255.255.0
====================================================
Name: Sub-externe-192.168.0.0
Description:
Type: Subnet
Address: 192.168.0.0
Network Mask: 255.255.255.0
====================================================
Name: Sub-interco-10.1.6.0
Description:
Type: Subnet
Address: 10.1.6.0
Network Mask: 255.255.255.0
====================================================
Name: Sub-interne-10.1.4.0
Description: Reseau interne 10.1.4.0
Type: Subnet
Address: 10.1.4.0
Network Mask: 255.255.255.0
====================================================
Name: Sub-messagerie-10.1.2.0
Description:
Type: Subnet
Address: 10.1.2.0
Network Mask: 255.255.255.0
====================================================
Name: Sub-web-10.1.1.0
Description:
Type: Subnet
Address: 10.1.1.0
Network Mask: 255.255.255.0
====================================================
Name: Universe*
Description:
Type: Host
Address: 0.0.0.0
MAC Address:
====================================================

Network Interface Report
Name: Interface-Interconnection
Gateway: FW-APPLI
Description:
IP Address: 10.1.6.2
ConnectedToInside: 0
Illegal Address: 0
Allow Multicast: 0
SynFlood Protection: 0
Portscan Protection: 1
Netmask: 255.255.255.0
DLCI:
Transparent Clients:
Transparent Servers:
Spoof Protected Networks:
Input Filter:
Output Filter:
====================================================
Name: Interface-interne
Gateway: FW-APPLI
Description:
IP Address: 10.1.4.1
ConnectedToInside: 1
Illegal Address: 1
Allow Multicast: 0
SynFlood Protection: 0
Portscan Protection: 0
Netmask: 255.255.255.0
DLCI:
Transparent Clients:
Transparent Servers:
Spoof Protected Networks:
Input Filter:
Output Filter:
====================================================

Protocol Report
Name
Read Only Protocol
Description
Base Protocol
Protocol Number
Message Type
Destination Port Range
Source Port Range
AH
True
IPSEC, IP Authentication Header
IP
51


AIM
True
AOL Instant Messenger
TCP

5190
0-65535
E-Sentry
False
TCP

1701
EGP
True
Exterior Gateway Protocol
IP
8


EON
True
ISO clnp
IP
80


ESP
True
IPSEC, IP Encapsulating Security Payload
IP
50


HELLO
True
Hello Routing Protocol
IP
63


ICMP
True
Internet Control Message Protocol
IP
1


IGMP
True
Internet Group Control Protocol
IP
2


IPIP
True
SWIPE
IP
94


IPinIP
True
IP in IP encapsulation
IP
4


Imaps
False
TCP

993
LDAPS
False
TCP

636
1024-65535
PUP
True
PUP
IP
12


RAW
True
Raw IP
IP
255


SMTP-TLS
False
TCP

25
1024-65535
SYSLOG
False
UDP

514
514
TCP
True
Transmission Control Protocol
IP
6


UDP
True
User Datagram Protocol
IP
17


auth
True
Authentication Service
TCP

113
1024-65535
bftp
True
TCP

152
1024-65535
biff
True
UDP

512
1024-65535
biff_rev
True
UDP

1024-65535
512
chargen_tcp
True
TCP

19
1024-65535
chargen_udp
True
UDP

19
1024-65535
chargen_udp_rev
True
UDP

1024-65535
19
cifs
True
TCP

139
1024-65535
daytime_tcp
True
TCP

13
1024-65535
daytime_udp
True
UDP

13
1024-65535
daytime_udp_rev
True
UDP

1024-65535
13
discard_tcp
True
TCP

9
1024-65535
discard_udp
True
UDP

9
1024-65535
dns_tcp
True
DNS Zone transfer
TCP

53
1024-65535
dns_udp
True
DNS Resolver request
UDP

53
1024-65535
dns_udp_rev
True
DNS Resolver response
UDP

1024-65535
53
dns_udp_s2s
True
DNS Server to DNS Server
UDP

53
53
echo_tcp
True
TCP

7
1024-65535
echo_udp
True
UDP

7
1024-65535
echo_udp_rev
True
UDP

1024-65535
7
esm_agent
True
ESM Agent
TCP

5601
1024-65535
esm_mgr
True
ESM Manager
TCP

5600
1024-65535
esm_rem_install
True
ESM Remote Installation
TCP

5599
1024-65535
esm_rev_install
True
ESM Reverse Installation
TCP

1025-5000
1024-65535
exec
True
TCP

512
1024-65535
finger
True
TCP

79
1024-65535
ftp
True
File Transfer Control
TCP

21
1024-65535
gopher
True
TCP

70
1024-65535
gwproxy
True
TCP

416
1024-65535
h323
True
H.323 Audio/Video conferencing
TCP

1720
1024-65535
hawk
True
TCP

418
1024-65535
http
True
HTTP
TCP

80
1024-65535
https
True
HTTP over SSL
TCP

443
1024-65535
icmp_dest_unreachable
True
ICMP Destination Unreachable
ICMP
3

icmp_echo_reply
True
ICMP Echo Reply
ICMP
0

icmp_echo_request
True
ICMP Echo Request
ICMP
8

icmp_src_quench
True
ICMP Source Quench
ICMP
4

icmp_time_exceeded
True
ICMP Time Exceeded
ICMP
11

isakmp
True
ISAKMP
UDP

500
500
iso-tsap
True
TCP

102
1024-65535
ita_admin
True
TCP

3833
1024-65535
ita_agent
True
TCP

5052
1024-65535
ita_mgr
True
TCP

5051
1024-65535
ita_view
True
TCP

3834
1024-65535
kerberos_auth_88
True
kerberos authentication
UDP

88
1024-65535
kerberos_tcp
True
TCP

750
1024-65535
kerberos_udp
True
UDP

750
1024-65535
kerberos_udp_rev
True
UDP

1024-65535
750
lockd_tcp
True
TCP

4045
1024-65535
lockd_udp
True
UDP

4045
1024-65535
lockd_udp_rev
True
UDP

1024-65535
4045
login
True
TCP

513
0-1023
nbdgram
True
UDP

138
0-65535
netbios_137_tcp
True
TCP

137
1024-65535
netbios_137_udp
True
UDP

137
137
netbios_138_tcp
True
TCP

138
1024-65535
netbios_138_udp
True
UDP

138
138
netbios_139_tcp
True
TCP

139
1024-65535
netbios_139_udp
True
UDP

139
139
netmeeting_audio_control
True
TCP

1731
1024-65535
netstat
True
TCP

15
1024-65535
nfsd_tcp
True
TCP

2049
1024-65535
nfsd_udp
True
UDP

2049
1024-65535
nfsd_udp_rev
True
UDP

1024-65535
2049
nntp
True
USENET News
TCP

119
1024-65535
nsetupd
True
Raptor Mobile/Desk Setup Daemon
TCP

420
1024-65535
ntp
True
NTP Client request
UDP

123
1024-65535
ntp_rev
True
NTP Client response
UDP

1024-65535
123
ntp_s2s
True
NTP Server to Server
UDP

123
123
pc_anywhere_tcp
True
PC Anywhere Data
TCP

5631
1024-65535
pc_anywhere_udp
True
PC Anywhere Status
UDP

5632
1024-65535
pcserver
True
TCP

600
1024-65535
ping
True
ICMP Echo
ICMP
8

pop-2
True
TCP

109
1024-65535
pop-3
True
TCP

110
1024-65535
printer
True
TCP

515
1024-65535
readeagle
True
TCP

414
1024-65535
readhawk
True
TCP

418
1024-65535
realaudio
True
Real Audio
TCP

7070
1024-65535
realaudio_proxy
True
Real Audio Proxy
TCP

1090
1024-65535
realaudio_udp
True
Real Audio UDP
UDP

6970-7170
1024-65535
rip
True
UDP

520
1024-65535
rip_rev
True
UDP

1024-65535
520
rtsp
True
rtsp
TCP

554
1024-65535
shell
True
TCP

514
1024-65535
smtp
True
TCP

25
1024-65535
snmp
True
UDP

161
1024-65535
snmp_rev
True
UDP

1024-65535
161
snmptrap
True
UDP

162
1024-65535
snmptrap_rev
True
UDP

1024-65535
162
srl
True
Secure Remote Login
TCP

423
1024-65535
ssh
False
Protocole SSH
TCP

22
1024-65535
sunrpc_tcp
True
TCP

111
1024-65535
sunrpc_udp
True
UDP

111
1024-65535
sunrpc_udp_rev
True
UDP

1024-65535
111
syslog
True
UDP

514
1024-65535
syslog_rev
True
UDP

1024-65535
514
systat
True
TCP

11
1024-65535
t120
True
T.120 Chat/Whiteboard/Application sharing
TCP

1503
1024-65535
tacacs
True
TCP

49
1024-65535
telnet
True
TCP

23
1024-65535
tftp
True
UDP

69
1024-65535
tftp_rev
True
UDP

1024-65535
69
uucp
True
TCP

540
1024-65535
visualizer
True
Raptor Systems NetWatch
TCP

417
1024-65535
who
True
UDP

513
1024-65535
who_rev
True
UDP

1024-65535
513
whois
True
TCP

43
1024-65535
x-server0
True
X - Display 0
TCP

6000
1024-65535
x-server1
True
X - Display 1
TCP

6001
1024-65535

Proxy Services Report
Name: CIFSD Enabled: TRUE Trace: FALSE Timeout: 300 TCP Port: 1039
Name: DNSD Enabled: Enable Host Master: FW-APPLI Serial Format: yyymmddHHM SOA Refresh: 43200 SOA Retry: 3600 SOA Expire: 2678400 Default TTL: 3600 Max TTL: 604800 Report Trace Info: 0 Verbose Trace: 0 Deny Outside RFC1597: 1 Log RFC1597 Failures: 1 Transfer to NS only: 1 Host File Directory: C:/WINNT/system32/drivers/etc Interal Host Name: FW-APPLI External Host Name: FW-APPLI
Name: FTPD Enabled: Disable Timeout: 900 Allow Low Ports: NO Allow Named Ports: NO
Name: GSPD TCP Enabled: TRUE TCP Timeout: 3600 TCP All Ports Enabled: TRUE UDP Enabled: TRUE UDP Timeout: 60 IP Enabled: TRUE IP Timeout: 3600 Allow Reserved Services: Yes
Name: H323D Status: Enable Timeout: 300 Linger: 0 Port: 1720 Trace Files: Off Loose Security: UDP Low Port: 20000 UDP High Port: 30000
Name: HTTPD Enabled: Enable URL: Listen on Ports: Listen on HTTP Ports: Timeout: 600 Keep Alive Time: 120 Default Extentsion: .html SFG IP: SFG Port: Web Proxy: WebProxy Port:
Name: NBDGRAMD Enabled: True Log UDP Broadcasts: False Filter MailSlots: False Mailslots: Mailslots: Name: \MAILSLOT\TEMP\NETLOGON Description: Exact Match: TRUE Name: \MAILSLOT\LANMAN Description: Exact Match: TRUE Name: \MAILSLOT\MSBROWSE Description: Exact Match: TRUE Name: \MAILSLOT\BROWSE Description: Exact Match: TRUE Name: \MAILSLOT\NET\NETLOGON Description: Exact Match: TRUE Name: \MAILSLOT\NET\NTLOGON Description: Exact Match: TRUE Name: \MAILSLOT\NET\GETDC Description: Exact Match: FALSE
Name: NNTPD State: Enable Trace Files: Off Timeout: 300 Cache Increment: 4096 Max. Cache: 65536 Strict: 0 Drop Policy: 0 Listen: Mininum Visit: 5 Linger: Off
Name: NTPD Enabled: Enable
Name: PINGD Enabled: True
Name: RTSPD Enabled: True
Name: SIPD Enabled: True
Name: SMTPD Status: Disable Recognized Debug Command: Off FlowControlCheck: Off Trace: Off Trace Telnet: Off Timeout: 330 Smart Server: Check Sender Regular Expression: Off Bad Sender Regualar Expression: Check Sender Domain: Off Realtime Blackhole List: Off Realtime Blackhole Domain:
Name: SQLNETD Enabled: Enable Listen: 1521 Answer Timeout: 1
Name: TELNETD Enabled: TRUE Timeout: 3600
Name: WAPD Enabled: True

Gateway Services Report
Name: Fetcher Daemon Enabled: Disable
Name: Gateway Parameters Reverse Lookup: Disable Log Gwcontrol: Off Log Using Hostnames: Off Forward Filter: FiltresMaquette DNS Resolver Name to Address Lookup Timeout (seconds): DNS Resolver Address to Name Timeout (seconds): Process Restart: Enable Restart Interval: 10 Max. Restart Attempts: 10 Restart Retry Period: 3600 Restart Failure Log Threshold: 1
Name: LDAP Authentication LDAP Server: grandeourse TCP Port: 389 Alternate Server: Alternate Server TCP Port: 389 Base DN: ou=Maquette de test,o=sga Bind Firewall DN: No Firewall DN: Use Clear Text for User Password If Necessary: No Use Standard Schema: 0 User Object Class: inetorgperson Group Object Class: groupOfUniqueNames UID Attribute: uid Primary Group Attribute: cn Group Member Attribute: uniquemember Group Member Type: 1
Name: Notify Daemon Enabled: Enable COM Port:
Name: SecurID Authentication Nearest Server:
Name: Tacacs Daemon Enabled: FALSE Service: firewall Eagle Group Attributes: eaglegroup
Name: OOBA Daemon Enabled: Enable HTTPD Pervasive: 0 Authentication Method: ldap HTTPD Ticket Timeout(sec): 3600 HTTPD Lifetime (sec): 28800 HTTPD Max. Use: 10000 Services Ticket Timeout(sec): 3600 Services Lifetime (sec): 3600 Services Max. Use: 10 Use Client IP Address to verify ticket: 0 Port number: 888 Share secret with other firewall: 0 Servers:

Redirect Services Report
Service Redirect ID
Description
Protocol
Gateway
All Interfaces
Source
Mask
Destination
Port

Rules Report
Rule ID: 1
Description: Authentification des utilisateurs sur LDAP
Access Mode: Allow
Services: LDAPS
Service Limits: 636/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 0
In Via: Any
Out Via: Any
Source: Serveurs-Maquette
Destination: GrandeOurse
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 0
====================================================
Rule ID: 10
Description: Administration du serveur E-Sentry
Access Mode: Allow
Services: http*
Service Limits: http-https http-tunnel.443.4443 http-allurl http-allext
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 http:0 http-https:1 http-tunnel:list http-tunnel.list:443.4443 http-dcom-tunnel:0 http-ftp:0 http-gopher:0 http-finjan:0 http-allurl:0 http-allext:0 http-proxy: http-proxy.ipaddress:
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: ClientsWeb
Destination: Eridan
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 11
Description: Acces Messagerie des clients internes
Access Mode: Allow
Services: Imaps SMTP-TLS
Service Limits: 993/tcp 25/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 smtp.rlimit.soft: smtp.rlimit.hard: smtp.hide: smtp.read: smtp.check_orig_domain:0 smtp.no_srcroutes:0 smtp.no_telnet:0 smtp.loose_recip:0 smtp.loose_orig:0 smtp.no_esmtp:1 smtp.odmr:1 smtp.auth:1 smtp.etrn:1 smtp.expn:1 smtp.vrfy:1
Advanced Services:
Application Scanning: 0
In Via: Any
Out Via: Any
Source: ClientsMessagerie
Destination: Dauphin
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 0
====================================================
Rule ID: 12
Description: Reception des mails depuis externe
Access Mode: Allow
Services: SMTP-TLS
Service Limits: 25/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 smtp.rlimit.soft: smtp.rlimit.hard: smtp.hide: smtp.read: smtp.check_orig_domain:0 smtp.no_srcroutes:0 smtp.no_telnet:0 smtp.loose_recip:0 smtp.loose_orig:0 smtp.no_esmtp:1 smtp.odmr:1 smtp.auth:1 smtp.etrn:1 smtp.expn:1 smtp.vrfy:1
Advanced Services:
Application Scanning: 0
In Via: Any
Out Via: Any
Source: Pegase
Destination: Dauphin
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 0
====================================================
Rule ID: 13
Description: Envoi des mails depuis interne
Access Mode: Allow
Services: SMTP-TLS
Service Limits: 25/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 smtp.rlimit.soft: smtp.rlimit.hard: smtp.hide: smtp.read: smtp.check_orig_domain:0 smtp.no_srcroutes:0 smtp.no_telnet:0 smtp.loose_recip:0 smtp.loose_orig:0 smtp.no_esmtp:1 smtp.odmr:1 smtp.auth:1 smtp.etrn:1 smtp.expn:1 smtp.vrfy:1
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: Dauphin
Destination: Pegase
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 14
Description: Acces DNS des serveurs Maquette
Access Mode: Allow
Services: dns_udp dns_udp_rev
Service Limits: 53/udp 1024-65535/udp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: Serveurs-Maquette
Destination: DNSexternes
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 15
Description: Autorisation du PING
Access Mode: Allow
Services: ping*
Service Limits: ping
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: EnsembleMachinesMaquette
Destination: EnsembleMachinesMaquette
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 16
Description: Acces MAJ Debian serveurs Maquette
Access Mode: Allow
Services: http*
Service Limits: http http-allurl http-allext
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 http:1 http-https:0 http-tunnel:any http-tunnel.list: http-dcom-tunnel:0 http-ftp:0 http-gopher:0 http-finjan:0 http-allurl:0 http-allext:0 http-proxy: http-proxy.ipaddress:
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: Serveurs-Maquette
Destination: ServeursWebatteignablesServeursMaquette
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 17
Description: Acces Web Reverse Proxy serveurs internes
Access Mode: Allow
Services: http*
Service Limits: http http-https http-tunnel.443 http-allurl http-allext
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 http:1 http-https:1 http-tunnel:list http-tunnel.list:443 http-dcom-tunnel:0 http-ftp:0 http-gopher:0 http-finjan:0 http-allurl:0 http-allext:0 http-proxy: http-proxy.ipaddress:
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: Fleche
Destination: ServeursWebInternes
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 18
Description: Acces Web serveur messagerie interne
Access Mode: Allow
Services: http*
Service Limits: http http-https http-tunnel.any http-allurl http-allext
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 http:1 http-https:1 http-tunnel:any http-tunnel.list: http-dcom-tunnel:0 http-ftp:0 http-gopher:0 http-finjan:0 http-allurl:0 http-allext:0 http-proxy: http-proxy.ipaddress:
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: ClientsMessagerie
Destination: Dauphin
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 19
Description: Acces Web pour administration LDAP
Access Mode: Allow
Services: http*
Service Limits: http-https http-tunnel.443 http-allurl http-allext
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 http:0 http-https:1 http-tunnel:list http-tunnel.list:443 http-dcom-tunnel:0 http-ftp:0 http-gopher:0 http-finjan:0 http-allurl:0 http-allext:0 http-proxy: http-proxy.ipaddress:
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: ClientsWeb
Destination: GrandeOurse
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 2
Description: Deport des logs sur PetiteOurse
Access Mode: Allow
Services: SYSLOG
Service Limits: 514/udp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 0
In Via: Any
Out Via: Any
Source: Serveurs-Maquette
Destination: PetiteOurse
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 0
====================================================
Rule ID: 3
Description: Administration SSH des serveurs Maquette
Access Mode: Allow
Services: ssh
Service Limits: 22/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 0
In Via: Any
Out Via: Any
Source: EnsembleMachinesMaquette
Destination: Serveurs-Maquette
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 0
====================================================
Rule ID: 4
Description: Acces SAMBA des clients
Access Mode: Allow
Services: cifs*
Service Limits: cifs
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 cifs-noread:0 cifs-nowrite:0 cifs-noprint:0 cifs-nopipe:0 cifs-nodisk:0 cifs-nocomm:0 cifs-nogeneric:0 cifs-nolist:0 cifs-nodelete:0 cifs-norename:0 cifs-nochmod:0 cifs-log:1
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: ClientsSamba
Destination: Colombe
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 5
Description: Acces Messagerie des clients externes
Access Mode: Allow
Services: Imaps SMTP-TLS
Service Limits: 993/tcp 25/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 smtp.rlimit.soft: smtp.rlimit.hard: smtp.hide: smtp.read: smtp.check_orig_domain:0 smtp.no_srcroutes:0 smtp.no_telnet:0 smtp.loose_recip:0 smtp.loose_orig:0 smtp.no_esmtp:1 smtp.odmr:0 smtp.auth:1 smtp.etrn:0 smtp.expn:0 smtp.vrfy:0
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: ClientsMessagerie
Destination: Pegase
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 6
Description: Acces e-Sentry des agents
Access Mode: Allow
Services: E-Sentry
Service Limits: 1701/tcp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 0
In Via: Any
Out Via: Any
Source: ClientsE-Sentry
Destination: Eridan
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 0
====================================================
Rule ID: 7
Description: Acces NTP des clients internes
Access Mode: Allow
Services: ntp ntp_rev
Service Limits: 123/udp 1024-65535/udp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: ClientsNTPinterne
Destination: Hercule
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 8
Description: Acces NTP serveur interne
Access Mode: Allow
Services: ntp ntp_rev ntp_s2s
Service Limits: 123/udp 1024-65535/udp 123/udp
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: Hercule-externe-192.168.0.1
Destination: Universe*
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================
Rule ID: 9
Description: Acces WEB des clients externes
Access Mode: Allow
Services: http*
Service Limits: http http-https http-tunnel.443.4443 http-allurl http-allext
Proxy Limits: ftp-disallow-gets:0 ftp-disallow-puts:0 http:1 http-https:1 http-tunnel:list http-tunnel.list:443.4443 http-dcom-tunnel:0 http-ftp:0 http-gopher:0 http-finjan:0 http-allurl:0 http-allext:0 http-proxy: http-proxy.ipaddress:
Advanced Services:
Application Scanning: 1
In Via: Any
Out Via: Any
Source: ClientsWeb
Destination: Fleche
Time:
Authentication:
User:
User:
Group:
Group:
Alert 5 minutes threshold:
Alert 15 minutes threshold:
Alert Hour threshold:
Alert Day threshold:
Alert Week threshold:
Log Normal Activity: 1
Application Data Scanning: 1
====================================================

Haut Précedent Suivant Titre Sommaire