For any firewall changes or troubleshooting, complete a Firewall Change Request form with the following information:
Include three examples for opening up SSH to the computers with IP addresses from 184.108.40.206 to 220.127.116.11, a web server to the world, and a DNS server to campus.
- Source IP range - IPs that should be permitted to your new service -- ie, '18.104.22.168 to 22.214.171.124 (126.96.36.199/24)', or 'any/world', or 'campus only'.
- Destination IP(s) (IP of machine(s) on your network that are hosting this new service -- ie, SSH server '188.8.131.52', or Web Server '184.108.40.206', or DNS server '220.127.116.11')
- TCP/UDP: IP port(s) (IP ports which your new service is using -- ie, 'tcp/22', or 'tcp/80 and tcp/443', or 'udp/53' for DNS).
- A brief description of the service, and if the requested hole is temporary or permanent.
Routine firewall changes will be processed by the end of the next business day, although changes are often processed much sooner. Firewall changes may be expedited by calling the 24/7 IT Support Center at (520) 626-TECH (8324).
Emergency changes may be processed 24/7 by calling the Network Operations Center (NOC) at (520) 621-7999 and asking for 'Red Pager' to be paged. Emergency firewall changes are defined as those which critically impact a department's services and cannot wait until regular business hours.
*SecOps business hours are defined as 8:00 a.m. to 5:00 p.m. Monday through Friday, except for university holidays.
Firewall services function 24/7 other than during routine maintenance windows. Please visit our Scheduled IT Maintenance Windows webpage for more information.