[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

AS2 Port Issues

To: <ietf-ediint@xxxxxxx>
Subject: AS2 Port Issues
From: "Redick, Jeffrey A" <jeffrey.redick@xxxxxxx>
Date: Wed, 29 Jun 2005 18:02:53 -0400
List-archive: <http://www.imc.org/ietf-ediint/mail-archive/>
List-id: <ietf-ediint.imc.org>
List-unsubscribe: <mailto:ietf-ediint-request@imc.org?body=unsubscribe>
Sender: owner-ietf-ediint@xxxxxxxxxxxx
Thread-index: AcU8ZeznXBTwRbxHTsWpOIvWlZU0hhAZ9s1w
Thread-topic: AS2 Port Issues

AS2 Standards Community,

There is a long standing port usage issue that AS2 implementers have
been dealing with for some time now.  Many companies  restrict outbound
ports on their Internet facing firewalls for security reasons.  The fact
that there is no well known or recommended port for AS2 implementations
continues to be a problem.  Every AS2 implementer is making up their own
port assignments and requiring their trading partners to use them.  AS2
implementations are making firewalls look like pieces of Swiss cheese.
Firewall security personnel are hopping mad about this issue and can't
understand why this is happening.  We try to explain why we need to keep
opening more ports to them but, quite frankly, we don't understand why
there isn't at least a recommended port or port range for this
technology either.  The attached email dialog between two AS2
administrators is a typical exchange when trying to set up a new
connection (I removed the last names and company names for the sake of
privacy).  Can someone explain why having a range of recommended ports
for AS2 implementations is such an issue?

Regards,
Jeff Redick
Engineering Manager
MS 3O
1075 W. Entrance Dr.
Auburn Hills, MI   48326
 
Phone: 248-364-5826 (8-351)
Email:  mailto:jeffrey.redick@xxxxxxx


>John,
 
> Unfortunately, that is the only port opened to our AS2 server. We have
the same issues with opening ports on our
> firewall. FYI, our engineers have been pushing the AS2 governing
bodies to come up with a standard AS2 port, to no
> avail. I don't have the authorization or ability to open additional
ports.

>Rick 

>>-----Original Message-----
>>From: John 
>>Sent: Tuesday, June 28, 2005 5:55 PM
>>To: Richard
>>
>>Subject: Fwd: RE: AS2 Setup Contact and Form


>>Richard,
 
>>I am the firewall admin for xxxxx.  It is my job to setup the AS2
communications.   We are under strict compliance with
>>Sarbanes-Oxley, HIPPA and VISA Security guidelines to limit the number
of ports off our firewall.   Therefore,  we would
>> like you to open port 4080 or 4079 for xxxxx communication to xxxxx
on your inbound side.
 
>>Thanks,
>>John

Follow-Ups:
- RE: AS2 Port Issues
  - From: Kyle Meadors

Prev by Date: RE: question on cipher suites
Next by Date: RE: AS2 Port Issues
Previous by thread: question on cipher suites
Next by thread: RE: AS2 Port Issues
Index(es):
- Date
- Thread