Wireless Access

Reply
Frequent Contributor I
Posts: 72
Registered: ‎09-19-2011

Block 1701/UDP

Hi All,

How can I block 1701/UDP in Aruba controller.

 

Guru Elite
Posts: 8,445
Registered: ‎09-08-2010

Re: Block 1701/UDP

Add a firewall policy to the user-role.

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Frequent Contributor I
Posts: 72
Registered: ‎09-19-2011

Re: Block 1701/UDP

I am not using Aruba controller for VPN termination, so I want to block this port completely  in Aruba controller.

Actually this is from Aruba hardening guide and there are other port also I want to block, but not sure how.

Guru Elite
Posts: 8,445
Registered: ‎09-08-2010

Re: Block 1701/UDP

Like I said, create a new firewall policy that blocks that traffic and then apply it to your user-role.

http://www.arubanetworks.com/techdocs/ArubaOS_6.4.4.x_WebHelp/Web_Help_Index.htm#ArubaFrameStyles/Firewall_Roles/Policies.htm%3FTocPath%3DRoles%2520and%2520Policies%7C_____1

Tim Cappalli | Aruba Security TME
@timcappalli | timcappalli.me | ACMX #367 / ACCX #480
Frequent Contributor I
Posts: 72
Registered: ‎09-19-2011

Re: Block 1701/UDP

So I guess I have to go with Service ACL,

 

(config) #firewall cp
(config-fw-cp) #ipv4 deny any proto 17 ports 1701 1701

 

Correct me if I am wrong.

Guru Elite
Posts: 20,960
Registered: ‎03-29-2007

Re: Block 1701/UDP

You are not wrong.



Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
Showing results for 
Search instead for 
Did you mean: