This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Port 500 failing PCI Scan.

So I have a Cyberoam CR25iNG that has been upgraded to SFOS for a while now. As of the past month I am failing the PCI scan on port 500. I have 4 VPNs setup. They are all from specific IPs to specific IPs, No dynamic IPs involved. So, the rule is tight there. I have setup specific rules to send port 500 traffic into lala land. Doesn't work. I have setup rules to block\deny port 500 traffic. Doesn't work. The Gateway type is set to Respond Only. I have tried everything I could find in a Google search. Trustwave will not let me pass even if I dispute. Any assistance is appreciated.

Thanks

This thread was automatically locked due to age.

0 FormerMember over 4 years ago

Hi Wes Millwood,

Thank you for posting your query.

Your question is already answered on this post : How do I close UDP Port 500?. Let us know if you have any question on how to create business application rule that forwards UDP 500 to non existing internal IP address.

Thanks,
Cancel
Vote Up 0 Vote Down

Cancel
0 Wes Millwood over 4 years ago in reply to FormerMember

I guess you didn't see where I mentioned I had already tried that and it isn't working. However, I have already tried that. It isn't working.
Cancel
Vote Up 0 Vote Down

Cancel
0 FormerMember over 4 years ago in reply to Wes Millwood

Hi Wes Millwood,

I sure did see that, but wanted to make sure that you have correct rule in place to send UDP 500 traffic to non existing internal IP address. Is it possible for you to share screenshot of that rule?

Thanks,
Cancel
Vote Up 0 Vote Down

Cancel