Occasional Advisor
Posts: 8

CMA ssh and http traffic from unknown sources

In looking at some netflow reports for our VBP-ST, there are lots of ssh and http traffic from unknown external ip addresses.  The VBP has Enable Firewall turned on for Provider/Subscriber Interfaces and it has a direct connection to the internet.  I also notice that the VBP-ST has Allow HTTP, HTTPS, SSH, and SNMP access through firewall Enabled.  Would it be recommended to disable these as I don't think they would be required for Real Presence Desktop connections.  Since this mentions Provider/Subscriber interfaces would prevent access over these ports from our internal network?