[Contents]
[Prev]
[Next]
[Index]
[Report an Error]
CustomizingSun RPC Services
Because Sun RPC services use dynamically negotiated
ports, you cannot use regular fixed TCP/UDP ports to permit Sun RPC
services in a security policy. Instead, you must specify a Sun RPC
program number. For example, NFS uses two program numbers: 100003
and 100227. The corresponding TCP/UDP ports are dynamic. To permit
the program numbers, you use a set applications application-name term term-name rpc-program-number number statement
for each number. The ALG maps the program numbers into dynamically
negotiated TCP/UDP ports and permits or denies the service based on
a policy you configure.
[Contents]
[Prev]
[Next]
[Index]
[Report an Error]
