[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Strange problem with Web access to an Access Point defined in a DMZ lan
Title: RE: Re: [FW-1] Strange problem with Web access to an Access Point defined in a DMZ lan Thanks. I'll look into that today, and possibly move the rule in question above the other one and check. From a quick scan, neither the AP's or the WS onjects which have access to the AP's are in the HTTP with resource rules, but I will check more in depth a bit later. Thanks for the idea, Mike -----Original Message----- From: David Knoll [SMTP:[email protected]] Sent: à ôáøåàø 24 2002 9:32 Subject: Re: [FW-1] Strange problem with Web access to an Access Point defined in a DMZ lan Well if it comes before the rule you are talking about and it looks like this: WS-Objects (or any other group that includes WS-Objects) Any (or any other group that includes Access Point Group) Http with resource
Then traffic passes through the security server. Try the PTR records see if it solves your problem.
David Knoll Fax:+ 972-3-6476396 Cellular:+ 972-54-496357
E-mail: [email protected]
Upbit Solutions Ltd 9 Nissan Street Tel-Aviv 69715, Israel --------------------------------------------
-----Original Message----- Dave, Yes I do, but not in this specific rule, so as far as I know it should not catch this HTTP. Mike -----Original Message----- From: David Knoll [SMTP:[email protected]] Sent: ä ôáøåàø 21 2002 0:23 Subject: Re: [FW-1] Strange problem with Web access to an Access Point defined in a DMZ lan Do you use a security sever (add with resource) for HTTP?
David Knoll Fax:+ 972-3-6476396 Cellular:+ 972-54-496357
E-mail: [email protected]
Upbit Solutions Ltd 9 Nissan Street Tel-Aviv 69715, Israel --------------------------------------------
-----Original Message-----
Afternoon all, I have a very odd situation here that I am unable to work out. I have a setup as follows : Internal Network | | FW ---- Secured VLAN | | Internet On the secured VLAN I have a Lan dedicated only to Access Points. I have a rule allowing specific users to access the AP's from the Internal Network using HTTP and Telnet. The users can Telnet to the AP's fine. The users attempt to access the AP's via HTTP. I see the sessions established in the log' and in the browser I get : "FW-1 at fw: Failed to connect to the WWW server". This again, despite the fact that I see the session established in the logs, and Telnet (standard) works fine. Anyone have any idea what could be causing this ? Thanks,
Mike Glassman System & Security Admin Computer & Information Systems Israeli Airports Authority Ben-Gurion Airport <<http://www.ben-gurion-airport.co.il>> Tel : 972-3-9710785 Fax : 972-3-9710939 Email : [email protected] Usage of this email address or any email address at iaa.gov.il for the purpose of sales pitches, SPAM or any other such unwanted garbage, is illegal, and any person, whether corporate or alone doing so, will be prosecuted to the fullest possible extent.
|