Firewall Rules For Putty
I'm trying to create a rule that allows for putty secure shell usage. The following doesn't seem to work:
App Proto SrcAddr DestAddr DestPort Allow Action Path
In:
putty.exe TCP Any Any Any Yes Allow c:\program files\putty\putty.exe
putty.exe IP Any Any Any Yes Allow c:\program files\putty\putty.exe
Out:
putty.exe TCP Any Any Any Yes Allow c:\program files\putty\putty.exe
putty.exe IP Any Any Any Yes Allow c:\program files\putty\putty.exe
Here's the firewall log entry (c:/Program Files/Common Files/Softwin/BitDefender Firewall/bdfirewall.txt):
2007/08/05 18:42:01.616 [bDFNDISF][FILTER] Denied UDP packet. (dir = INBOUND, src addr = 192.168.2.1, src port = 41817, dst addr = 192.168.2.3, dst port = 137)
2007/08/05 18:42:08.382 [bDFNDISF][FILTER] Denied UDP packet. (dir = INBOUND, src addr = 192.168.2.1, src port = 41817, dst addr = 192.168.2.3, dst port = 137)
2007/08/05 18:42:14.585 [bDFNDISF][FILTER] Denied UDP packet. (dir = INBOUND, src addr = 192.168.2.1, src port = 41817, dst addr = 192.168.2.3, dst port = 137)
2007/08/05 18:42:27.397 [bDFNDISF][FILTER] Denied UDP packet. (dir = INBOUND, src addr = 192.168.2.1, src port = 41818, dst addr = 192.168.2.3, dst port = 137)
2007/08/05 18:42:33.460 [bDFNDISF][FILTER] Denied UDP packet. (dir = INBOUND, src addr = 192.168.2.1, src port = 41818, dst addr = 192.168.2.3, dst port = 137)
2007/08/05 18:42:40.179 [bDFNDISF][FILTER] Denied UDP packet. (dir = INBOUND, src addr = 192.168.2.1, src port = 41818, dst addr = 192.168.2.3, dst port = 137)
2007/08/05 18:42:53.179 [bDFNDISF][FILTER] Denied UDP packet. (dir = INBOUND, src addr = 192.168.2.1, src port = 41819, dst addr = 192.168.2.3, dst port = 137)
What needs to be done?
Tom
p.s., How do you see the app in the firewall log. It makes it rather difficult to add new rules to account for existing firewall blocking problems.
Comments
-
I see that the packages that are being blocked are UDP protocol, so maybe you should create a rule for the UDP protocol as well.
I don't know that much about ssh and stuff so it's just a hunch.0 -
137/udp is netbios traffic, it has nothing to do with ssh. Ssh is tcp, port 22 (default port). Do you have something like dst port = 22 in firewall log? What error do you get when you fire up putty?
0 -
App Proto SrcAddr DestAddr DestPort Allow Action Path
In:
putty.exe TCP Any Any Any Yes Allow c:\program files\putty\putty.exe
putty.exe IP Any Any Any Yes Allow c:\program files\putty\putty.exe
Out:
putty.exe TCP Any Any Any Yes Allow c:\program files\putty\putty.exe
putty.exe IP Any Any Any Yes Allow c:\program files\putty\putty.exe
I was just advising him to create a new rule for the UDP protocol, as you can see above he has created one only for TCP.0 -
Hello Florin,
I was just advising him to create a new rule for the UDP protocol, as you can see above he has created one only for TCP.
Yes and that's all he needs to allow ssh traffic, so it should work...0 -
Thanks all. It turned out to be VPN related.
By the way, I did create rules for any protocol, but the editor converted it into separate rules for IP and TCP.0