I need a solution
I've Googled this one quite a bit and came across a lot of garbled responses. Hopefully this will get some decent answers.
Now, I have a firewall policy that's applied for any client that goes off of the network. When in unmanaged mode I want the client basically locked down.
The only problem with that is all users lost wireless printing functionality.
How can I allow wireless printing without opening up too many ports, services, or IP's? How can it be locked down to ONLY allow wireless printing?
Is there a set number of ports and services to allow this traffic?
Here are some logs to help out.
Note: This user is on their home wireless network trying to print to a wireless printer.
| 14018 | 3/12/2013 9:50 | Blocked | 15 | Outgoing | UDP | 10.0.1.11 | 84-4B-F5-07-E5-20 | 427 | 10.0.1.38 | 10-0B-A9-BA-1F-BC | 1596 | C:\HP_SI_CC38C23C-7824-4DBB-AC73-997CD0BBFEC7\7zS68BB\Installer\hpbcsiInstaller.exe | Block all other traffic |
| 14019 | 3/12/2013 9:50 | Blocked | 15 | Outgoing | UDP | 10.0.1.11 | 84-4B-F5-07-E5-20 | 3702 | 10.0.1.38 | 10-0B-A9-BA-1F-BC | 1597 | C:\HP_SI_CC38C23C-7824-4DBB-AC73-997CD0BBFEC7\7zS68BB\Installer\hpbcsiInstaller.exe | Block all other traffic |
| 14022 | 3/12/2013 9:50 | Blocked | 15 | Outgoing | UDP | 10.0.1.11 | 84-4B-F5-07-E5-20 | 427 | 10.0.1.38 | 10-0B-A9-BA-1F-BC | 1606 | C:\HP_SI_CC38C23C-7824-4DBB-AC73-997CD0BBFEC7\7zS68BB\Installer\hpbcsiInstaller.exe | Block all other traffic |
| 14023 | 3/12/2013 9:50 | Blocked | 15 | Outgoing | UDP | 10.0.1.11 | 84-4B-F5-07-E5-20 | 3702 | 10.0.1.38 | 10-0B-A9-BA-1F-BC | 1607 | C:\HP_SI_CC38C23C-7824-4DBB-AC73-997CD0BBFEC7\7zS68BB\Installer\hpbcsiInstaller.exe | Block all other traffic |
| 14028 | 3/12/2013 9:54 | Blocked | 15 | Incoming | ETHERNET [type=0x806] | 10.0.1.11 | 84-4B-F5-07-E5-20 | 0 | 10.0.1.38 | 10-0B-A9-BA-1F-BC | 2054 | Block all other traffic |