Difference between revisions of "Requesting Open Ports on the JHU Firewall"
 
(36 intermediate revisions by 2 users not shown)
Line 1: Line 1:
==INTRO==
+
CS does '''''not''''' have a network firewall in place, but ''JHU has a '''perimeter firewall''''' in place between the Internet and JHU.
 
 
CS does '''''not''''' have a network firewall in place, but JHU has a perimeter firewall in place between the Internet and JHU. <!-- If you are running your own server on the CS network and need ports open on the JHU Firewall, there are several items to consider.  -->
 
  
 
If you need a port open on the JHU Firewall, '''''you''''' need to request it from JHU.
 
If you need a port open on the JHU Firewall, '''''you''''' need to request it from JHU.
  
<br>
+
== Requesting JHU to Open a Firewall Port ==
 
 
==Requesting JHU to Open a Firewall Port==
 
===New, Official Method===
 
 
 
:Please see:
 
 
 
::[http://it.jhu.edu/security/Public_IP_Addressing_NEW http://it.jhu.edu/security/Public_IP_Addressing_NEW]
 
 
 
:for instructions to request port openings through the JHU Firewall.
 
 
 
:''All questions and follow-up regarding the instructions need to be addressed to JHU Networking or JHU Network Security.''  The JHU Helpdesk at 410-516-HELP may be able to direct your questions to the correct team.
 
 
 
 
 
=== Alternative (Older) Method If Unable To Use Above Method===
 
 
 
All port opening/closing requests should be sent ''by the requester'' to
 
[mailto:network.security@jhmi.edu network.security@jhmi.edu] as JHU's Network Security team is responsible for the JHU perimeter firewall.  You will have to provide:
 
 
 
 
 
:a) your system's full ''hostname'' (including the domain part) and ''IP address''.
 
 
 
::and
 
 
 
:b) ''specific reasons'' as to the need of each of your port openings.
 
 
 
::and
 
 
 
:c) allow JHU <!--(or CS)--> to run ''security scans'' on any equipment for which you request port openings.  <!--(We will discuss security scans later in this page.)-->
 
 
 
 
 
'''NOTE:'''  You are welcome to CC: [mailto:support@cs.jhu.edu support@cs.jhu.edu] in your request e-mail(s) to JHU
 
Network Security, so that we can follow the conversation.  But, for the most
 
part, the conversation will be between you and JHU Network Security.
 
  
 +
=== Official Process ===
  
 +
Please see JHU's [https://johnshopkins.service-now.com/serviceportal?id=service_brochure&sys_id=8c124901dbe970904078e26b8a96199d NonCloud Public IP Addressing] process document for instructions to request port openings through the JHU firewall.
  
 +
You should start the above process at step number four, "CMDB Registration".  (Steps one and two are already taken care of by us provisioning a CS IP address for you.  Step three is taken care of as long as you have an IP address on the CS public grad network.)
  
 +
{{important|''All '''questions''' and '''follow-up''' regarding these instructions need to be addressed to '''JHU Networking''' or '''JHU Network Security''' ({{mailto|nsi@jhu.edu}}). The JHU Helpdesk at '''410-516-HELP''' may be able to direct your questions to the correct team.''}}
  
 +
=== Alternative (Older) Method If Unable to Use Above Method (Link Not Working, Etc.) ===
  
 +
All port opening/closing requests should be emailed ''by the requester'' to {{mailto|nsi@jhu.edu}} as JHU's Network Security team is responsible for the JHU perimeter firewall.  You will have to provide:
  
 +
# Your system's full ''hostname'' (including the domain part) and ''IP address'' '''and'''
 +
# ''Specific reasons'' as to the need of each of your port openings '''and'''
 +
# Allow JHU to run ''security scans'' on any equipment for which you request port openings.
  
 +
{{important|''All '''questions''' and '''follow-up''' regarding these instructions need to be addressed to {{mailto|nsi@jhu.edu}}''}}
  
  
Line 52: Line 27:
 
[[Category:Troubleshooting]]
 
[[Category:Troubleshooting]]
 
[[Category:Security]]
 
[[Category:Security]]
 +
[[Category:Virtual Machines (VMs)]]

Latest revision as of 18:24, 3 April 2023

CS does not have a network firewall in place, but JHU has a perimeter firewall in place between the Internet and JHU.

If you need a port open on the JHU Firewall, you need to request it from JHU.

Requesting JHU to Open a Firewall Port

Official Process

Please see JHU's NonCloud Public IP Addressing process document for instructions to request port openings through the JHU firewall.

You should start the above process at step number four, "CMDB Registration". (Steps one and two are already taken care of by us provisioning a CS IP address for you. Step three is taken care of as long as you have an IP address on the CS public grad network.)

All questions and follow-up regarding these instructions need to be addressed to JHU Networking or JHU Network Security (nsi@jhu.edu). The JHU Helpdesk at 410-516-HELP may be able to direct your questions to the correct team.

Alternative (Older) Method If Unable to Use Above Method (Link Not Working, Etc.)

All port opening/closing requests should be emailed by the requester to nsi@jhu.edu as JHU's Network Security team is responsible for the JHU perimeter firewall. You will have to provide:

  1. Your system's full hostname (including the domain part) and IP address and
  2. Specific reasons as to the need of each of your port openings and
  3. Allow JHU to run security scans on any equipment for which you request port openings.

All questions and follow-up regarding these instructions need to be addressed to nsi@jhu.edu