NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] FW1 and websense-->>FW: Rulebase problem with Websense! Call 30783


  • To: "Fw-1-Mailinglist@FW1-NOSPAMLists. Us. Checkpoint. Com" <[email protected]>
  • Subject: [FW1] FW1 and websense-->>FW: Rulebase problem with Websense! Call 30783
  • From: "Marc Jacquard" <[email protected]>
  • Date: Mon, 11 Dec 2000 09:20:41 -1000
  • Importance: Normal
  • Sender: [email protected]

Thanks to all of you.  I finally got this response from Websense on why I can not use external net.  It is a feature and not a bug!!  Sounds very familiar.
 
Thanks again,
 

Marc Jacquard
SR. Systems Engineer
Fujitsu America, INC.
Hilo Office
email: [email protected]
Telephone:
Pager:

-----Original Message-----
From: Support [mailto:[email protected]]
Sent: Monday, December 11, 2000 6:37 AM
To: [email protected]
Subject: Rulebase problem with Websense! Call 30783

Hi Marc, yes it is recommended in the manual on page 31-33 that you use any here. If you have the destination as external-net it will send that source traffic to external-net. We use any so that all traffic of this type will get to where it is supposed to go. Your rule base needs to be set up this way. You must do the same for https or secure sites as well. But you may have to install that rule above the websense rule if websense blocks it after you add that resource with the any in the destination field.
----------------------------------------------------
Clientele Call 30783

Caller:   -  Marc Jacquard    Fujitsu America, Inc.
Phone:
Summary: Rulebase problem with Websense!

12-11-2000 8:27:20 AM   SMCCOY
I have a specific LAN for visitors that is only allowed access to the
outside world.  I have 3 rules defined for this network.

visitor-net             any                     http-->Adult    drop            long
vistor-net              external-net    http                    accept  long
                                                telnet
                                                ftp
                                                ssh
                                                https
                                                dns
visitor-net             any                     any                     drop            long

My problem is that I can do all the functions accept HTTP and HTTPS.  Every
packet that goes out on those two services are being rejected for web
security
reasons by websense.  The only way I have been able to get the rule to work
is instead of using the external-net object, I had to use the "ANY" for rule
#2.  This does not seem right to me.  Has anyone else had this problem?  My
external-net object is 0.0.0.0 and is used in my address translation table.
This was an object recommended by CkeckPoint.  I have called Websense, but,
I have not heard from a technician yet.  Any help would be greatly
appreciated.


Best regards,

Marc Jacquard
SR. Systems Engineer (CCSA)
Fujitsu America, INC.
Hilo Office
email: [email protected]
Telephone:
Pager:

Thank you,
Serge' McCo
y
Websense Technical Support

For Websense Installation and Configuration questions/issues please
consult our online manual at:
http://www.websense.com/support/help/
For frequently asked questions, please refer to our knowledge base at:
http://www.websense.com/support/knowledgebase/search.cfm
For Specific Websense Integration questions/issues please consult our
online document center at:
http://www.websense.com/support/documentation/index.cfm



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.