PMA Firewall

Owned by
Matt Davidson
Last updated: Dec 14, 2023
2 min read

Why is this being done:

A firewall has been installed to protect the PMA network from the rest of the campus and the world. The goal is to decrease the number of exposed vulnerabilities on the PMA network. This increased security will cut down on the number of ISO quarantines about services listening on the network and prevent devices from being blocked on the network. Over the next five years, we will work with building tenants to move them to a new scalable network to align the building with the rest of campus centralization efforts.

What departments does this effect:

  1. Physics
  2. Fusion
  3. Math
  4. Astronomy

What type of connections does this affect:

  1. Wired only, wireless is not changing
  2. Devices on public networks only (private will not be affected)
    1. Public IP addresses begin with 128, 146, or 129.
    2. Private IP addresses that start with 172 or 10 are not affected

What will still work (please see graphic below):

  1. All traffic within one department
  2. All traffic from any computer connected to VPN

  3. All outgoing connections from the computer inside PMA except when connecting to a different department in PMA

  4. If you can perform a task while on Wi-Fi you will be able to perform the same task while on hardwire except when connecting to a different department in PMA

  5. Connections to instrument and printer networks

  6. Any whitelisted services (Complete this form to request a service to be whitelisted: https://utexas.qualtrics.com/jfe/form/SV_6Rplgi8pWRUTz9j )

What will no longer work after all the rules are applied (please see graphic below):

  1. Traffic between departments: Physics, Fusion, Math, Astronomy
  2. Incoming traffic initiated from TACC (it is recommended to initiate the connection from the computer in PMA not from TACC)
  3. Incoming traffic from devices on Wi-Fi

How do I request a firewall rule exception:

Please fill out this request: https://utexas.qualtrics.com/jfe/form/SV_6Rplgi8pWRUTz9j

What if I have specific needs that need to be discussed or how do I request a firewall rule exception:

Please denote that on the survey -OR- submit a ticket here: https://cns.utexas.edu/help -OR- email help@cns.utexas.edu . Any of these methods will create a ticket, and we will contact you ASAP.


Confluence Documentation | Web Privacy Policy | Web Accessibility