Networking: RPC Connection Tracking Helper
A port object that automatically unlocks the associated high ports for the RPC mapper, so you must not unlock all high ports for the RPC services.
Martin Moroney commented
Considering Sophos UTM is pitched as a replacement for TMG within a Microsoft centric network I would think this is a "must have" feature !
Andrew Piddington commented
Juniper use RPC UUIDs to lock RPC to particular services e.g. MS-EXCHANGE. Please implement something similar.
A feature highly desired here too. Having the whole MS-RPC range of 15000 and something ports unlocked permanently is no real option. Any progress on that?
I need this, too in the flavor of MS-RPC. It would be very useful in MS AD/Exchange Envinronments. Right now you must open tons of high ports to the DC.