comp.security.firewalls archive
Re: Routing 2 different streams from the same IP address
Date: Fri Sep 30 2005 - 08:47:22 CEST
cbell@qch.on.ca wrote:
> We have a box that runs 2 different applications that both send
> interfaced data. We are in a situation now that requires us to route
> the 2 streams over the the same firewall (Cisco PIX) to 2 different IP
> addresses and ports. The issue we are having is that the streams come
> from the same IP and we can't use port translation as each time the
> application opens a conenction it grabs any available port (we are
> unable to set a static port to send from on the applications). So we
> haven't figured out how to seperate the streams since we can't define
> the port they are originating from.
> Basically IP n.n.n.140 sends 2 streams of data over 2 different ports
> that are dynamically chosen from the normal range. Stream A needs to go
> to destination n.n.n.8 port 850, and stream B needs to go to
> destination n.n.n.14 port 6343.
> Any ideas to set us on the correct path would be appreciated.
What exactly do you want to filter out? What layer 5/6 protocol is used?
Is the PIX capable of that protocol?
Yours,
VB.
--
MAC-Filtering bringt so viel Schutz vor "Hackern" wie Zeitungspapier vor
einer Atombome. (MAC filtering is protecting against "hackers" like newsprint
is protecting against a nuclear bomb)
- Christian Forler in de.comp.security.misc
Received on Mon Oct 24 02:06:45 2005