Subject: | |
From: | |
Reply To: | |
Date: | Thu, 31 Aug 2006 15:58:08 -0400 |
Content-Type: | text/plain |
Parts/Attachments: |
|
|
Here's my ports info, I actually googled just a few days ago so I
haven't had feedback from students yet. I also allowed some dns domains
for the xbox role which is on the bottom. Any advise is welcome.
CCSU_Xbox Add Policy
Action Protocol Untrusted Trusted Enable Edit Del Move
Allow TCP *:* *:88
Allow UDP *:* *:53
Allow TCP *:* *:3074
Allow UDP *:* *:3074
Allow UDP *:* 149.152.18.41 /255.255.255.255 :53 trusted dns server
Allow UDP *:* 149.152.18.42 /255.255.255.255 :53 trusted dns server
Block ALL
CCSU_PS2 Add Policy
Action Protocol Untrusted Trusted Enable Edit Del Move
Allow UDP *:* *:53
Block TCP *:* *:1-1024
Allow ALL TRAFFIC * *
Allow UDP *:* 149.152.18.41 /255.255.255.255 :53 trusted dns server
Allow UDP *:* 149.152.18.42 /255.255.255.255 :53 trusted dns server
Block ALL
CCSU_Nintendo Add Policy
Action Protocol Untrusted Trusted Enable Edit Del Move
Allow TCP *:* *:80
Allow TCP *:* *:443
Allow TCP *:* *:28910
Allow TCP *:* *:29900
Allow TCP *:* *:29901
Allow TCP *:* *:29920
Allow UDP *:* *:*
Block ALL
CCSU_Tivo Add Policy
Action Protocol Untrusted Trusted Enable Edit Del Move
Allow TCP *:* *:80
Allow TCP *:* *:8080
Allow TCP *:* *:37
Allow UDP *:* *:37
Allow UDP *:* *:123
Block ALL
************************************************************************
********
DNS rules
CCSU_Xbox
Allowed Host Match Description Enable Del
.passport.net ends Microsoft Passport Network
.passport.com ends Microsoft Passport Network
.passportimages.com ends Microsoft Passport Network
.microsoft.com ends Microsoft
Rob Quast
Central Connecticut State University
Information Technology Services
Technical Services
(860) 832-2057
[log in to unmask]
-----Original Message-----
From: Perfigo SecureSmart and CleanMachines Discussion List
[mailto:[log in to unmask]] On Behalf Of Brian Beausoleil
Sent: Thursday, August 31, 2006 12:48 PM
To: [log in to unmask]
Subject: Re: [PERFIGO] Latest Game Console Access Rules
I guess I failed to specify that i was looking for the ports and hosts
for each system. The Sony Vaio thing has me worries too.
Thanks for the replies so far.
---------------------------------------------------
Brian Beausoleil
Network Telecom Services
Southern Connecticut State University
----- Original Message -----
From: "Joyce, Todd N" <[log in to unmask]>
Date: Thursday, August 31, 2006 11:30 am
Subject: Re: Latest Game Console Access Rules
To: [log in to unmask]
> Sony Viaos have got me with this though
>
>
>
> For the rules, we just block all inside server and IT subnets and
> allowthem to get to DNS and outside. This works great for those
> Sony games
> that require 1,000 ports opened. That is how we have found the
> computers.
>
>
>
> For the computers I am adding them to the filters list because it will
> be less of those than playstations
>
>
>
> todd
>
>
>
> Todd Joyce
> Network Services
> Radford University - The Smart Choice
> [log in to unmask]
> (540) 831-7777
>
>
>
> Keep your boots and ChapStick and ice hotels.
>
> Give me shorts and sandals and a thirty-blocker.
>
>
>
> Temperance Brennan - Monday Mourning
>
>
>
> From: Perfigo SecureSmart and CleanMachines Discussion List
> [mailto:[log in to unmask]] On Behalf Of Robert L Wineriter
> Sent: Thursday, August 31, 2006 11:06 AM
> To: [log in to unmask]
> Subject: Re: Latest Game Console Access Rules
>
>
>
> Taken from an earlier post from Todd,
>
>
>
> **********************************************************************
> **
> ***************
>
>
>
> 00:0D:3A:* GLOBAL Microsoft-XBox ROLE: Game-0607 1
>
>
> 00:12:5A:* GLOBAL Microsoft-XBox ROLE: Game-0607 2
>
>
> 00:50:F2:* GLOBAL Microsoft-XBox ROLE: Game-0607 3
>
>
> 00:01:4A:* GLOBAL Sony-PS2-PSP ROLE: Game-0607 4
>
>
> 00:02:C7:* GLOBAL Sony-PS2-PSP ROLE: Game-0607 5
>
>
> 00:04:1F:* GLOBAL Sony-PS2-PSP ROLE: Game-0607 6
>
>
> 00:13:15:* GLOBAL Sony-PS2-PSP ROLE: Game-0607 7
>
>
> 00:09:BF:* GLOBAL Nintendo ROLE: Game-0607 8
>
>
>
>
> Todd Joyce
>
> Network Services
>
> Radford University - The Smart Choice
>
>
>
> ******************************************************
>
>
>
> ________________________________
>
> From: Perfigo SecureSmart and CleanMachines Discussion List
> [mailto:[log in to unmask]] On Behalf Of Brian Beausoleil
> Sent: Thursday, August 31, 2006 8:45 AM
> To: [log in to unmask]
> Subject: Latest Game Console Access Rules
>
>
>
> I had a call from some of our gamers on campus about being unable to
> play. Well I just checked my rules and they are all gone. Don't know
> how or why, but they are gone. Would someone be kind enough to
> provideme with their latest set of rules?
>
>
>
> It is very much appreciated.
>
>
>
> Brian Beausoleil
>
> Network Services
>
> Southern CT State University
>
> Office: (203) 392-6109
>
> Email: [log in to unmask]
>
>
>
>
>
>
|
|
|