what protocols need UDP instead of just TCP?? DNS, IMAP, SSH, etc.?

what protocols need UDP instead of just TCP?? DNS, IMAP, SSH, etc.?

[seberino]

I'm only allowing TCP out of my firewall.

What apps/protocls need UDP?

DNS, IMAP, SSH, etc.?

I dunno if I need to allow UDP for anything.

chris

Re: what protocols need UDP instead of just TCP?? DNS, IMAP, SSH, etc.?

[Jose Maria Lopez]

El mié, 26 de 01 de 2005 a las 01:05, seberino@spawar.navy.mil escribió:
> I'm only allowing TCP out of my firewall.
> 
> What apps/protocls need UDP?
> 
> DNS, IMAP, SSH, etc.?

DNS needs UDP for sure.

> 
> I dunno if I need to allow UDP for anything.

Just for DNS if you don't have more protocols like NFS or the
like that use the UDP.

Make a lsof -i and look at the daemons you have and if they
are listening to UDP or TCP ports, or consult the /etc/services
list to know if your services need UDP or not.

> chris

Regards.

-- 
Jose Maria Lopez Hernandez
Director Tecnico de bgSEC
jkerouac@bgsec.com
bgSEC Seguridad y Consultoria de Sistemas Informaticos
http://www.bgsec.com
ESPAÑA

The only people for me are the mad ones -- the ones who are mad to live,
mad to talk, mad to be saved, desirous of everything at the same time,
the ones who never yawn or say a commonplace thing, but burn, burn, burn
like fabulous yellow Roman candles.
                -- Jack Kerouac, "On the Road"

Re: what protocols need UDP instead of just TCP?? DNS, IMAP, SSH, etc.?

[Raphael Jacquot]

Jose Maria Lopez wrote:
> El mié, 26 de 01 de 2005 a las 01:05, seberino@spawar.navy.mil escribió:
> 
>>I'm only allowing TCP out of my firewall.
>>
>>What apps/protocls need UDP?
>>
>>DNS, IMAP, SSH, etc.?

all the mbone protocols, such as RTP and friends

> DNS needs UDP for sure.
> 
> 
>>I dunno if I need to allow UDP for anything.
> 
> 
> Just for DNS if you don't have more protocols like NFS or the
> like that use the UDP.
> 
> Make a lsof -i and look at the daemons you have and if they
> are listening to UDP or TCP ports, or consult the /etc/services
> list to know if your services need UDP or not.
> 
> 
>>chris
> 
> 
> Regards.
> 

Re: what protocols need UDP instead of just TCP?? DNS, IMAP, SSH, etc.?

[Jason Opperisano]

On Tue, Jan 25, 2005 at 04:05:50PM -0800, seberino@spawar.navy.mil wrote:
> I'm only allowing TCP out of my firewall.
> 
> What apps/protocls need UDP?
> 
> DNS, IMAP, SSH, etc.?

DNS--yes.  IMAP and SSH--no.

> I dunno if I need to allow UDP for anything.

other common UDP ports i allow out:

Port	Service
---------------
123	NTP
500	IKE

-j

--
"I never passed Remedial Science 1A.
 And you're a nuclear technician?"
        --The Simpsons

Re: what protocols need UDP instead of just TCP?? DNS, IMAP, SSH, etc.?

[Mohd. Jeffry]

DNS, NTP, NFS


On Wed, 26 Jan 2005 13:47:21 -0500, Jason Opperisano <opie@817west.com> wrote:
> On Tue, Jan 25, 2005 at 04:05:50PM -0800, seberino@spawar.navy.mil wrote:
> > I'm only allowing TCP out of my firewall.
> >
> > What apps/protocls need UDP?
> >
> > DNS, IMAP, SSH, etc.?
> 
> DNS--yes.  IMAP and SSH--no.
> 
> > I dunno if I need to allow UDP for anything.
> 
> other common UDP ports i allow out:
> 
> Port    Service
> ---------------
> 123     NTP
> 500     IKE
> 
> -j
> 
> --
> "I never passed Remedial Science 1A.
>  And you're a nuclear technician?"
>         --The Simpsons
> 
>