[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] Problem with FTP, HTTP, and HTTPS
Title: Message I'm in the process
of evaluating CheckPoint FW-1 4.1 and cant seem to get FTP, HTTP, or HTTPS to
work. I've managed to get SMTP to work.
My setup is all
traffic come into a LinkSys Router, from there I've told the router to forward
ports 21, 80, and 443 to my FW-1 box. The FW-1 box has two nics in it on
two separate subnets. I then have another box on the internal net that I'm
trying to get 21 and 80 directed to and another box for 25 and 443. I have
the following rules:
Any
FWALL SMTP->mailserver
Any
FWALL FTP Accept
Any
FWALL http->code_red DROP (this just blocks the
code red attacks)
Any
FWALL HTTP Accept
Any
FWALL HTTPS Accept
Then I have the
following translation rules
Any
FWALL SMTP -----> ANY MAILSERVER
SMTP
Any
FWALL FTP ------> ANY
FTPSERVER FTP
Any
FWALL HTTP -----> ANY WEBSERVER
HTTP
Any
FWALL HTTPS ----> ANY MAILSERVER
HTTPS
Port 25 (SMTP) works
fine. It redirects all of the email over to my Exchange 2000 Server just
fine.
Now, port 21 opens
with rules above but when I ftp in it's asking for some checkpoint login.
I only have one user setup "administrator" and have tried with that account but
it doesn't seem to let me in. So I'm not sure what account it
wants.
For port 80, it's
coming in the router over to the FWALL box and then on the webclient side, it
gives me the error about FW-1 cant attach to webserver.
For port 443 I get
the same response as port 80.
What am I doing
wrong??
Robert
Smith
|