[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Do ppl log Deny Any Any?
You should have a first rule dropping netbios traffic(Any Any NBT Drop), among others, so that you don't get too much logging. You should log the "Any Any Deny" rule to see what didn't went through a valid rule and why it didn't. Rodrigo Borges -----Mensagem original----- De: GNOME [mailto:[email protected]] Enviada: Thursday, November 08, 2001 1:27 PM Para: [email protected] Assunto: [FW-1] Do ppl log Deny Any Any? Hi Just wondering...if ppl log "deny any deny long" so that one can monitor what type of traffic is being dropped? I am having a 10Mbps Internet pipe and am worry that my log will grow till very huge and will affect the performance I am using 2 x CP 4.1 running on Sun 220R manchine. My mangement server is runnig on Win 2k. Is it ok to log deny any any? Can anyone share their experience? Thanks __________________________________________________ Do You Yahoo!? Find a job, post your resume. http://careers.yahoo.com =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|