Wireless Access

Reply
Frequent Contributor I

Block 1701/UDP

Hi All,

How can I block 1701/UDP in Aruba controller.

 

Guru Elite

Re: Block 1701/UDP

Add a firewall policy to the user-role.

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Frequent Contributor I

Re: Block 1701/UDP

I am not using Aruba controller for VPN termination, so I want to block this port completely  in Aruba controller.

Actually this is from Aruba hardening guide and there are other port also I want to block, but not sure how.

Guru Elite

Re: Block 1701/UDP

Like I said, create a new firewall policy that blocks that traffic and then apply it to your user-role.

http://www.arubanetworks.com/techdocs/ArubaOS_6.4.4.x_WebHelp/Web_Help_Index.htm#ArubaFrameStyles/Firewall_Roles/Policies.htm%3FTocPath%3DRoles%2520and%2520Policies%7C_____1

| Tim Cappalli | Aruba Security | @timcappalli | timcappalli.me |

NOTE: Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba or Hewlett Packard Enterprise.
Highlighted
Frequent Contributor I

Re: Block 1701/UDP

So I guess I have to go with Service ACL,

 

(config) #firewall cp
(config-fw-cp) #ipv4 deny any proto 17 ports 1701 1701

 

Correct me if I am wrong.

Guru Elite

Re: Block 1701/UDP

You are not wrong.


*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.4 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Aruba Central Documentation
Sign up for Security Alerts
Aruba Technical Webinars
Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: