FireWall-1 & High UDP/TCP ports

FireWall-1 & High UDP/TCP ports

Post by Tom Wentwort » Fri, 11 Aug 1995 04:00:00

Is there anyone out there using FireWall-1 software that has
managed to get a range of TCP/UDP ports let through?  (ie. UDP
ports 6970-7170 for ReadAudio ...)  The manual says nothing about this.

Any help would be appreciated!

Tom Wentworth     (603) 883-0220
AimTech Corporation-    Nashua NH



1. ipchains/TCP/UDP, Why should I open UDP ports so that my TCP ports can work?


I have set up firewall to accept some ports.
/sbin/ipchains -F input
/sbin/ipchains -P input ACCEPT
/sbin/ipchains -A input -p TCP -s 0/0 --dport ssh -j ACCEPT
/sbin/ipchains -A input -p UDP -s 0/0 --dport ssh -j ACCEPT

Then I want to lock down all other ports.
/sbin/ipchains -A input -p TCP -s ! -j DENY

#??? what's wrong with this UDP ???
/sbin/ipchains -A input -p UDP -s ! -j DENY

If I comment out the UDP line, I can ssh into firewall from outside.
If I don't comment out that line, I can no longer ssh into firewall from

Why should I open UDP ports so that my TCP ports can work?

Thanks for any help.

Ed Wu

2. ET4000 16 24 bpp on xfree86 3.3

3. GigE & TCP/UDP High Water Mark

4. Setting DEC TULIP to use "FAST"

5. UDP/TCP ports -> protocol port

6. Any one know about Roaring Penguin?

7. Hacked? TCP port 12345 and UDP port 2364

8. Network Card not working... need help!

9. Ignore all incoming udp/ip and udp/ip on all ports, except open ports?

10. firewalls w/ ipfwadm & TCP ports

11. iad2 & iad3 UDP and rawdevices icmp & tcp

12. syslogd opens high UDP LISTEN port

13. breaking in via high udp ports?