Manualshelf

TMS zl Management and Configuration Guide ST.1.0.090213

ManualsBrandsHP ManualsComputer AccessoriesHP ProCurve Switch xl Access Controller Module
311312313314315316317318319320
4-71
Firewall
Port Mapping
Port Mapping
A port map is a port-to-application association. The firewall ALGs draw on the
port maps to learn which application to expect on a particular TCP or UDP
port. For example, if you add a port map that associates FTP with UDP 55555,
the TMS zl Module will treat traffic on UDP 55555 as FTP traffic—any ALGs
that apply to FTP will be applied to traffic on UDP 55555.
The TMS zl Module will treat traffic that passes through a port that is not
explicitly mapped as the application that is associated with the well-known
port. If no application is mapped to the port by the TMS zl Module or Internet
Assigned Numbers Authority (IANA), the traffic will be treated as generic TCP/
UDP traffic.
Note The IDS/IPS also uses these port maps. See “Port Maps” in Chapter 6: “Intru-
sion Detection and Prevention.”
The TMS zl Module’s port maps include several default assignments, which
are presented in the following table. Each service is matched with the standard
protocol and port designations plus a few common alternate port numbers
(listed in Table 4-5).
Table 4-5. Default Port Mappings
Service Protocol Port
FTP TCP 21
H323 TCP 1720
H323GK UDP 1719
HTTP TCP 80
HTTP TCP 3128
HTTP TCP 8080
IMAP TCP 143
MGCPCA UDP 2727
MGCPGW UDP 2427
NNTP TCP 119
POP3 TCP 110
RTSP TCP 554
RTSP TCP 7070