各位好,
按照中国电信集团网络加固要求,要在IDC网络出口做防病毒策略,屏蔽下述端口,请用户知晓,如有问题请在本月28日前反馈。
计划9月28日0点实施
具体屏蔽的端口如下:
rule 1 permit udp destination-port eq netbios-ssn
rule 2 permit udp destination-port eq netbios-ns
rule 3 permit udp destination-port eq 593
rule 4 permit udp destination-port eq 445
rule 5 permit udp destination-port eq 4444
rule 6 permit udp destination-port eq 135
rule 7 permit tcp destination-port eq 3332
rule 8 permit tcp destination-port eq 9996
rule 9 permit tcp destination-port eq 4444
rule 10 permit tcp destination-port eq 5554
rule 11 permit tcp destination-port eq 445
rule 12 permit tcp destination-port eq 593
rule 13 permit tcp destination-port eq 6669
rule 14 permit tcp destination-port range 137 139
rule 15 permit tcp destination-port eq 135
rule 16 permit tcp destination-port eq 1434
rule 17 permit tcp destination-port range 3127 3130
rule 19 permit tcp destination-port eq 42
rule 20 permit udp destination-port eq 1068
rule 21 permit udp destination-port eq 1434
rule 22 permit udp destination-port eq 5554
rule 23 permit udp destination-port eq 9996
rule 25 permit tcp destination-port eq 1068
rule 50 permit udp destination-port eq 17185
安全通 2017-9-28
|