Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Checkpoint specific Port hiding

To: [email protected]
Subject: RE: [FW1] Checkpoint specific Port hiding
From: [email protected]
Date: Thu, 25 Jan 2001 10:05:40 +0100
Sender: [email protected]



Hi Sun,

> It's possible to hide it but at the expense of a few things.
> Disable control connections option from the Policy/Properties. Then those
> port will be hidden. Instead you'll have to create manual rules to allow
> remote FW management and GUI connections.

I tried what you suggested but how can I make sure that FW-1 is accepting the
control services only on a specific (e.g. internal) interface?
Looks to me like after unsetting the Control Connections and restrict it to
dedicated IPs the ports are still open (as it should be).
I´d rather suggest to put a ACL on the border router so you can make sure for
some how that it´s no possible to access the FW from the internet.

Marco




================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] Web Surfing Authentication using NT Domains
Next by Date: Re: [FW1] tcp session timeout
Previous by thread: RE: [FW1] Checkpoint specific Port hiding
Next by thread: [FW1] fwopsec.conf questions
Index(es):
- Date
- Thread