RE: [fw-wiz] I am having a problem with check point and I need a little help
From: Steve Rielly (steve_at_extranet.co.nz)
Date: 06/30/03
- Previous message: Jeff Falgout: "RE: [fw-wiz] Blocking Kazaa"
- In reply to: Pettus, Duane R.: "[fw-wiz] I am having a problem with check point and I need a little help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "Pettus, Duane R." <dpettus@GryphonLC.com>, <firewall-wizards@nfr.net> Date: Mon, 30 Jun 2003 10:44:36 +1200
If I'm reading this right it one problem maybe your external interface is
set to loop back (127.0.0.1) yet the workstation simulating the internet is
set to 172.0.0.2.
Also, how do you mean you turn the service off for specific interfaces?
-----Original Message-----
From: firewall-wizards-admin@honor.icsalabs.com
[mailto:firewall-wizards-admin@honor.icsalabs.com]On Behalf Of Pettus,
Duane R.
Sent: Friday, 27 June 2003 8:09
To: firewall-wizards@nfr.net
Subject: [fw-wiz] I am having a problem with check point and I need a
little help
Yeah, I was having a problem with this checkpoint crap.
My firewall server when connected to the checkpoint services on any internal
NIC Card will not open a web page.
Let me give you the run down:
1 2000 server (Running Check point) (10.0.0.100-internal network ;
127.0.0.1-external network ; 10.20.0.1 - DMZ )
1 workstation (10.0.0.1 internal)
1 workstation (10.20.0.2 web server)
1 2003 server (10.0.0.3)
1 workstation simulating the internet (172.0.0.2 & connection to the
internet & DNS for the test environment)
This is not a problem when I just have the Checkpoint service running on the
external card ONLY.
When I turn the service off of the internal cards (10.0.0.100 and
10.20.0.1), I can tracert, ping open a website and it opens correctly.
When I turn the service on the internal cards (10.0.0.100 and 10.20.0.1), I
can tracert, ping but I cannot open a web page.
I am allowing everything on the firewall. It can resolves the web-site (I
see that at the bottom), it has the ability of resolving the host name
because I can resolve the name in the ping, but it will not open the web
page. If I put in the ip address of the website it will not open that
either
I have a rule that states to all everything from the internal network
I have a stealth rule and a cleanup rule that is it.
Duane R. Pettus
Gryphon Technologies
Sr. Network Administrator
dpettus@gryphonlc.com
240-387-1000 x409 work
301-675-0439 cell
www.gryphonlc.com
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Jeff Falgout: "RE: [fw-wiz] Blocking Kazaa"
- In reply to: Pettus, Duane R.: "[fw-wiz] I am having a problem with check point and I need a little help"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
