|Article Number: 540047||Article Version: 4||Article Type: How To|
Customers would like to block anonymous incoming traffic on RecoverPoint specific ports(Unused) which are not required over WAN and would like to close such ports in RecoverPoint settings and not from network firewall.
Customers would like to close TCP ports as such over WAN taking precautionary measures for unexpected vulnerabilities though RecoverPoint specific ports would use its own protocol.
Customer's security team performing penetration test in the network would like to close unused TCP ports over WAN interface.
Important note: Before planning to block incoming traffic on specific TCP/UDP ports refer RecoverPoint Security Configuration Guide to know functionality and impact of each TCP/UDP ports. It is always recommended to block the ports on network firewall and not in RecoverPoint.
Below are the most unused ports over WAN:
Procedure: A solution exists for this issue but intervention from Dell EMC technical support personnel is required. Procedure involves running script in each RecoverPoint appliance which adds new rules in iptables.rules. Contact the Dell EMC Customer Support Center or your service representative for technical assistance and reference this Dell EMC knowledgebase solution ID.