Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW-1] How to allow Exchange access

To: [email protected]
Subject: [FW-1] How to allow Exchange access
From: Raymond N <[email protected]>
Date: Wed, 10 Oct 2001 17:46:45 -0700
Comments: To: [email protected]
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Hi there,

I am using Firewall-1 4.1 SP4.  I want NT client workstation in network-A
be able to access the MS Exchange server in network-B, where the CP
firewall is in between.  The Exchange server is v5.5.  No network address
translation.

I know that there is pre-defined services "MSExchange", "MSExchange-v5.5",
"MSExchange-RemoteAdmin", "MSExchange-RemoteAdmin-v5.5" and
"MSExchange-SiteConnector".  What is needed in my situation?  And how the
rule(s) should look like?

I try this:
source = network-a
destination = network-b
service = all MSExchange service defined above
action = accept

It doesn't work.  From the log, I see that my client is trying to talk to
the server on tcp port 2400, and is being dropped.  I suppose using those
pre-defined resources can eliminate the need to open all the >1023 TCP
ports, isn't it?

Please help.

-raymond ([email protected])


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Follow-Ups:
- [FW-1] MetaIP DHCP service not starting
  - From: manish <[email protected]>

Prev by Date: Re: [FW-1] [FW1] Firewall NG Licenses
Next by Date: [FW-1] DTMQuery error
Previous by thread: Re: [FW-1] FTP with SSL connectivity through CP FW
Next by thread: [FW-1] MetaIP DHCP service not starting
Index(es):
- Date
- Thread