Define SunRPC Proxy parameters
The Sun Remote Procedure Call (RPC) Protocol Agent assists the Firewall, Layer 2 Firewall, or IPS engine in Portmapper connections.
The Portmapper Protocol Agents collect information about RPC services by interpreting the GET PORT and DUMP PORTS requests and their respective answers. All information it collects is stored in the Portmapper cache.
When the packet filter needs to evaluate RPC matches, it consults the Portmapper cache to check if the destination of the packet has the appropriate service defined in the rule. If the cache does not have the requested information available, the packet under evaluation is not let through and a query is sent to the destination host for RPC information. The information received is stored in cache.
- Attach the Portmapper Protocol Agent only to Portmapper connections passing through the firewall.
- Allow the firewall engine to send RPC queries.
- Optimize the structure of your security policy. See Knowledge Base article 10086 for more information.
Source | Destination | Service | Action |
---|---|---|---|
Firewall engine IP address (NDIs on clusters) | Any |
SunRPC (TCP) SunRPC (UDP) |
Allow |
For more details about the product and how to configure features, click Help or press F1.
Steps
- In the properties of a custom Service you have created, click Select next to the Protocol field and select SunRPC ([TCP|UDP]).
- (Firewall only) On the Protocol Parameters tab, set the parameters for the Protocol Agent.
- Click OK.