Inhaltsverzeichnis
Werbung
Security-Empfehlungen
1.2 Security-Empfehlungen
Component
Source
Destination
Core Back-End Communication
Controller
DNServer
Controller
Syslog Server UDP
Controller
RADIUS
Server
Controller
RADIUS
Server
Dynamic
Controller
Authorization
Client
(typically NAC)
Controller
AeroScout
Server
AeroScout
Controller
Server
Controller
Check Point
TFTP uses port 69 only when the secure control tunnel is NOT enabled between the AP and controller. If the secure
1
control tunnel is enabled TFTP exchanges take place within the secure tunnel and port 69 is not used
12
Protocol
Soruce
Port
(TCP/UDP)
UDP
Any
Any
UDP
Any
UDP
Any
UDP
Any
UDP
1144
UDP
12092
UDP
Any
Desti-
Service
Remark
nation
Port
53
DNS
If using DNS
514
Syslog
If Controller logs to external
syslog server
1812
RADIUS
If using RADIUS AAA
Authenti-
cation and
Authoriza-
tion
1813
RADIUS
If enabled RADIUS ac-
Ac-
counting
counting
3799
Dynamic
Request from Dynamic Au-
Authoriza-
thorization Client to discon-
tion Ser-
nect a specific client
ver (DAS)
12092
Location-
AeroScout Location-Based
Based
Service
Service
Proxy
(lbs)
1144
Location-
AeroScout Location-Based
Based
Service
Service
Proxy
(lbs)
18187
Check-
Logging to Check Point Ser-
point
ver
Getting Started, 04/2016, C79000-G8900-C269-07
Require
Firewall
to open
Optional
Optional
Optional
Optional
Optional
Optional
Optional
Optional
SCALANCE WLC711
Werbung
Inhaltsverzeichnis
