[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW-1] AW: [FW-1] Do ppl log Deny Any Any?
Yes they do log the cleanup- Rule. However if you have to many log entries you should reduce logging of accept rules and maybe use rules like that any any NBT drop <do not log> so that many droped, but in fact more or less "harmless" services are not appearing. --Joerg -----Ursprüngliche Nachricht----- Von: GNOME [mailto:[email protected]] Gesendet: Donnerstag, 8. November 2001 14:27 An: [email protected] Betreff: [FW-1] Do ppl log Deny Any Any? Hi Just wondering...if ppl log "deny any deny long" so that one can monitor what type of traffic is being dropped? I am having a 10Mbps Internet pipe and am worry that my log will grow till very huge and will affect the performance I am using 2 x CP 4.1 running on Sun 220R manchine. My mangement server is runnig on Win 2k. Is it ok to log deny any any? Can anyone share their experience? Thanks __________________________________________________ Do You Yahoo!? Find a job, post your resume. http://careers.yahoo.com =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|