Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] Why why why nbname / rejects?

To: [email protected]
Subject: [FW1] Why why why nbname / rejects?
From: Shane Hill <[email protected]>
Date: Wed, 11 Oct 2000 09:56:22 +0100
Sender: [email protected]

Hi Firewallers,

I've setup my locked down CP FW-1 4.1 SP2 NT4 Gateway.

I've setup Anti-spoofing, turned of implied rules, using SYNDefender gateway
etc and everything is working OK.

There are a few things in the log that I just don't understand.

1-Why some sites send us nbname 
Connecting to MS hotmail (outbound) also generates nbname (actually this
throws up an antispoof alert too since my MS (Web only) Proxy for some
reason passes this to its external nic (with internal nic IP address)  &
onto the firewall (WINS TCP/IP is only enabled on the internal interface).

2-Why am I seeing rejects (in & out bound)
I've only rejected auth/ident packets (all others dropped) yet the FW
rejects http/https/smtp/dns requests with high port numbers.  SYNDefender is
mentioned at the end of the entry. Why do I get these?  Why do I reject  and
not drop them?

Could someone shed some light onto these please.

Thanks,

Shane
[email protected]
University of Wales


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: AW: [FW1] RE: Management Console using non-routable IP.
Next by Date: RE: [FW1] how to configure a virtual IP for a host behind the FW
Previous by thread: AW: [FW1] RE: Management Console using non-routable IP.
Next by thread: RE: [FW1] Simple Nat/Security Rule BASe
Index(es):
- Date
- Thread