Security

last person joined: yesterday 

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).
Back to discussions
Expand all | Collapse all

Protocol filtering vs port filtering

This thread has been viewed 0 times

  • 1.  Protocol filtering vs port filtering

    Posted Jan 10, 2018 06:14 AM

    Dear Airheads experts,

     

    We need a protocol level filter for dhcp traffic (not only port level udp 67, 68). Can I do this with Aruba controller for example with basic PEF or application level filter? I saw a dhcp6 application on the controller but I don't know what does it mean exactly.

     

    Thank you in advance for your help!

    Br.,

    Zs



  • 2.  RE: Protocol filtering vs port filtering

    EMPLOYEE
    Posted Jan 10, 2018 06:20 AM

    What are you trying to do?



  • 3.  RE: Protocol filtering vs port filtering

    Posted Jan 10, 2018 06:26 AM

    Hi Colin,

     

    Our security team wants to make sure that only dhcp traffic goes through on udp 67, 68. So if it is possible we need a protocol filter.

     

    Thanks,

    Zs



  • 4.  RE: Protocol filtering vs port filtering

    EMPLOYEE
    Posted Jan 10, 2018 06:31 AM

    How is your security team doing this for their wired network?



  • 5.  RE: Protocol filtering vs port filtering

    Posted Jan 10, 2018 06:37 AM

    Unfortunately I don't know.

     

    But is there any recommendation about that or some controller side configuration possibility?

     

    Zs



  • 6.  RE: Protocol filtering vs port filtering

    EMPLOYEE
    Posted Jan 10, 2018 06:45 AM

    I have never heard of that before.  Most of our features are based on real-world applications.