Sybase NNTP forums - End Of Life (EOL)

The NNTP forums from Sybase - forums.sybase.com - are now closed.

All new questions should be directed to the appropriate forum at the SAP Community Network (SCN).

Individual products have links to the respective forums on SCN, or you can go to SCN and search for your product in the search box (upper right corner) to find your specific developer center.

Configuring Cisco PIX for AIS access

6 posts in Internet Server Last posting was on 2006-08-22 16:02:08.0Z
Chuck Posted on 2006-07-26 20:53:29.0Z
From: "Chuck" <cstephenson@knology.net>
Newsgroups: Advantage.Internet_Server
Subject: Configuring Cisco PIX for AIS access
Date: Wed, 26 Jul 2006 15:53:29 -0500
Lines: 10
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2869
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2869
X-RFC2646: Format=Flowed; Original
NNTP-Posting-Host: 66.184.183.34
Message-ID: <44c7d5b5@solutions.advantagedatabase.com>
X-Trace: 26 Jul 2006 14:51:01 -0700, 66.184.183.34
Path: solutions.advantagedatabase.com!solutions.advantagedatabase.com!66.184.183.34
Xref: solutions.advantagedatabase.com Advantage.Internet_Server:655
Article PK: 1120916

We are implementing the AIS portion of our database, and want to secure
it as much as possible. Can anyone tell me which specific UDP service AIS
needs?

Thanks,

Chuck Stephenson


Alex Wong (ADS) Posted on 2006-07-27 17:21:33.0Z
From: "Alex Wong \(ADS\)" <alexw@sybase.com>
Newsgroups: Advantage.Internet_Server
References: <44c7d5b5@solutions.advantagedatabase.com>
Subject: Re: Configuring Cisco PIX for AIS access
Date: Thu, 27 Jul 2006 11:21:33 -0600
Lines: 19
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2869
X-RFC2646: Format=Flowed; Response
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2869
NNTP-Posting-Host: 10.24.38.166
Message-ID: <44c8f35b@solutions.advantagedatabase.com>
X-Trace: 27 Jul 2006 11:09:47 -0700, 10.24.38.166
Path: solutions.advantagedatabase.com!solutions.advantagedatabase.com!10.24.38.166
Xref: solutions.advantagedatabase.com Advantage.Internet_Server:657
Article PK: 1120919

ADS/AIS just need a single port open for UDP service. For ADS 8.1, it can be
either for UDP or TCP service.

Alex

"Chuck" <cstephenson@knology.net> wrote in message
news:44c7d5b5@solutions.advantagedatabase.com...
>
> We are implementing the AIS portion of our database, and want to secure
> it as much as possible. Can anyone tell me which specific UDP service AIS
> needs?
>
> Thanks,
>
> Chuck Stephenson
>


Chuck Posted on 2006-07-31 14:04:47.0Z
From: "Chuck" <cstephenson@knology.net>
Newsgroups: Advantage.Internet_Server
References: <44c7d5b5@solutions.advantagedatabase.com> <44c8f35b@solutions.advantagedatabase.com>
Subject: Re: Configuring Cisco PIX for AIS access
Date: Mon, 31 Jul 2006 09:04:47 -0500
Lines: 31
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2869
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2869
X-RFC2646: Format=Flowed; Response
NNTP-Posting-Host: 66.184.183.34
Message-ID: <44ce0d70@solutions.advantagedatabase.com>
X-Trace: 31 Jul 2006 08:02:24 -0700, 66.184.183.34
Path: solutions.advantagedatabase.com!solutions.advantagedatabase.com!66.184.183.34
Xref: solutions.advantagedatabase.com Advantage.Internet_Server:660
Article PK: 1120922

Right, but there are specific UDP or TCP services that the port can be
opened for, any idea what the exact UDP service is?

Thanks for the quick response! I really appreciate it!

Chuck

"Alex Wong (ADS)" <alexw@sybase.com> wrote in message
news:44c8f35b@solutions.advantagedatabase.com...
> ADS/AIS just need a single port open for UDP service. For ADS 8.1, it can
> be either for UDP or TCP service.
>
> Alex
>
>
> "Chuck" <cstephenson@knology.net> wrote in message
> news:44c7d5b5@solutions.advantagedatabase.com...
>>
>> We are implementing the AIS portion of our database, and want to
>> secure it as much as possible. Can anyone tell me which specific UDP
>> service AIS needs?
>>
>> Thanks,
>>
>> Chuck Stephenson
>>
>
>


Alex Wong (ADS) Posted on 2006-07-31 15:40:37.0Z
From: "Alex Wong \(ADS\)" <alexw@sybase.com>
Newsgroups: Advantage.Internet_Server
References: <44c7d5b5@solutions.advantagedatabase.com> <44c8f35b@solutions.advantagedatabase.com> <44ce0d70@solutions.advantagedatabase.com>
Subject: Re: Configuring Cisco PIX for AIS access
Date: Mon, 31 Jul 2006 09:40:37 -0600
Lines: 48
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2869
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2869
X-RFC2646: Format=Flowed; Response
NNTP-Posting-Host: 10.24.38.166
Message-ID: <44ce21ab@solutions.advantagedatabase.com>
X-Trace: 31 Jul 2006 09:28:43 -0700, 10.24.38.166
Path: solutions.advantagedatabase.com!solutions.advantagedatabase.com!10.24.38.166
Xref: solutions.advantagedatabase.com Advantage.Internet_Server:661
Article PK: 1120923

I am not sure what specific services we are talking about. ADS does not use
any specific services except generic UDP protocol. We implement our own
transport on top of the UDP protocol. The encryption and compression in the
protocol are also proprietary implementation of the standard algorithms.

Sorry for being ignorant on this topic. I googled for UDP service types, and
could not find anything useful. Can you list some examples? Is this
requirement specific for a particular router or other hardware?

Alex

"Chuck" <cstephenson@knology.net> wrote in message
news:44ce0d70@solutions.advantagedatabase.com...
> Right, but there are specific UDP or TCP services that the port can be
> opened for, any idea what the exact UDP service is?
>
> Thanks for the quick response! I really appreciate it!
>
> Chuck
>
>
> "Alex Wong (ADS)" <alexw@sybase.com> wrote in message
> news:44c8f35b@solutions.advantagedatabase.com...
>> ADS/AIS just need a single port open for UDP service. For ADS 8.1, it can
>> be either for UDP or TCP service.
>>
>> Alex
>>
>>
>> "Chuck" <cstephenson@knology.net> wrote in message
>> news:44c7d5b5@solutions.advantagedatabase.com...
>>>
>>> We are implementing the AIS portion of our database, and want to
>>> secure it as much as possible. Can anyone tell me which specific UDP
>>> service AIS needs?
>>>
>>> Thanks,
>>>
>>> Chuck Stephenson
>>>
>>
>>
>
>


Chuck Posted on 2006-08-22 14:28:32.0Z
From: "Chuck" <cstephenson@knology.net>
Newsgroups: Advantage.Internet_Server
References: <44c7d5b5@solutions.advantagedatabase.com> <44c8f35b@solutions.advantagedatabase.com> <44ce0d70@solutions.advantagedatabase.com> <44ce21ab@solutions.advantagedatabase.com>
Subject: Re: Configuring Cisco PIX for AIS access
Date: Tue, 22 Aug 2006 09:28:32 -0500
Lines: 58
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2869
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2962
X-RFC2646: Format=Flowed; Response
NNTP-Posting-Host: 66.184.183.34
Message-ID: <44eb140b@solutions.advantagedatabase.com>
X-Trace: 22 Aug 2006 08:26:19 -0700, 66.184.183.34
Path: solutions.advantagedatabase.com!solutions.advantagedatabase.com!66.184.183.34
Xref: solutions.advantagedatabase.com Advantage.Internet_Server:667
Article PK: 1120928

Some examples of specific UDP services are any, bootpc, bootps, syslog,
secureid-udp, etc. I have an exhaustive list if that will help. Thanks again
for all the help!

Chuck

"Alex Wong (ADS)" <alexw@sybase.com> wrote in message
news:44ce21ab@solutions.advantagedatabase.com...
>I am not sure what specific services we are talking about. ADS does not use
>any specific services except generic UDP protocol. We implement our own
>transport on top of the UDP protocol. The encryption and compression in the
>protocol are also proprietary implementation of the standard algorithms.
>
> Sorry for being ignorant on this topic. I googled for UDP service types,
> and could not find anything useful. Can you list some examples? Is this
> requirement specific for a particular router or other hardware?
>
> Alex
>
>
>
> "Chuck" <cstephenson@knology.net> wrote in message
> news:44ce0d70@solutions.advantagedatabase.com...
>> Right, but there are specific UDP or TCP services that the port can be
>> opened for, any idea what the exact UDP service is?
>>
>> Thanks for the quick response! I really appreciate it!
>>
>> Chuck
>>
>>
>> "Alex Wong (ADS)" <alexw@sybase.com> wrote in message
>> news:44c8f35b@solutions.advantagedatabase.com...
>>> ADS/AIS just need a single port open for UDP service. For ADS 8.1, it
>>> can be either for UDP or TCP service.
>>>
>>> Alex
>>>
>>>
>>> "Chuck" <cstephenson@knology.net> wrote in message
>>> news:44c7d5b5@solutions.advantagedatabase.com...
>>>>
>>>> We are implementing the AIS portion of our database, and want to
>>>> secure it as much as possible. Can anyone tell me which specific UDP
>>>> service AIS needs?
>>>>
>>>> Thanks,
>>>>
>>>> Chuck Stephenson
>>>>
>>>
>>>
>>
>>
>
>


Mark Wilkins Posted on 2006-08-22 16:02:08.0Z
From: "Mark Wilkins" <tired@of.spam>
Newsgroups: Advantage.Internet_Server
References: <44c7d5b5@solutions.advantagedatabase.com> <44c8f35b@solutions.advantagedatabase.com> <44ce0d70@solutions.advantagedatabase.com> <44ce21ab@solutions.advantagedatabase.com> <44eb140b@solutions.advantagedatabase.com>
Subject: Re: Configuring Cisco PIX for AIS access
Date: Tue, 22 Aug 2006 10:02:08 -0600
Lines: 37
X-Priority: 3
X-MSMail-Priority: Normal
X-Newsreader: Microsoft Outlook Express 6.00.2900.2869
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2962
X-RFC2646: Format=Flowed; Response
NNTP-Posting-Host: 10.24.38.161
Message-ID: <44eb298e@solutions.advantagedatabase.com>
X-Trace: 22 Aug 2006 09:58:06 -0700, 10.24.38.161
Path: solutions.advantagedatabase.com!solutions.advantagedatabase.com!10.24.38.161
Xref: solutions.advantagedatabase.com Advantage.Internet_Server:668
Article PK: 1120930

Hi Chuck,

Thanks for the information. Advantage does not use those services, so I do
not think there is a need to open up the ports associated with any of them.
As Alex mentioned, it should only be necessary to open the port that you
specified in the Advantage Configuration Utility. I may be mistaken, but
those service names (e.g., bootpc, talk, etc.) are simply aliases as far as
the router is concerned. Configuring it for "talk" I *think* just opens up
port 517. ... Or maybe we are still just confused and are missing the
question.

When using an "AIS" connection type, you have to provide the IP address and
port number, so discovery should not be an issue. If you wanted to use a
non-AIS connection and just specify the server name, then the client does
have to go through a discovery process, which would likely rely on some of
the aforementioned services. For example, one method the client uses for
discovery is through multicast, so the firewall would have to be configured
to allow multicast packets. But even with a non-AIS connection, you can
specify the IP address and port (either in the connection string or in
ads.ini) and avoid the discovery process.

HTH,
Mark Wilkins
Advantage R&D

"Chuck" <cstephenson@knology.net> wrote in message
news:44eb140b@solutions.advantagedatabase.com...
> Some examples of specific UDP services are any, bootpc, bootps, syslog,
> secureid-udp, etc. I have an exhaustive list if that will help. Thanks
> again for all the help!
>
> Chuck
>