[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Problems with domain-tcp
> If I change the checkbox that I mentioned above to "true" all > domain-tcp packets from everywhere go trough the FW1-box. This doesn't sound right.. you have a choice of enabling this "First", "Last", or "Before Last", don't you? If you enable it "First", the rule that allows domain-tcp will be the first in yourt rule base. Set to "last" instead. This will put the enable-rule in behind you cleanup rule. The cleanup rule will then stop anything that you haven't explicitly allowed yourself. Cheers, Anders :) =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|