|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] SMTP with Resource is being rejected when rule says drop
To drop a connection the firewall has to do nothing after it receive a packet to establish a connection for a dropped rule. I.E. it doesn't send a packet to accept/reject the connection. When you use a security ressource for a service, it has to accept the connection to know what it contains and make a decision to accept or not the connection (In your case the sender field of the message). From that point the connection can't be just dropped so the other end doesn't even know the service exist it can just be rejected... If you want to drop phone call, all of those or selectively on caller id, if you have the option you can do so, you just don't answer the phone. It's like the firewall dropping a onnection request. BUT if you don't have caller ID and want to just receive call from one relative you can't you have at least to answer the phone to know who is calling so even if you hang up if it is not the wanted relative the other people will know you are there... (It's the case when you use a security server with FW-1 it can reject but not drop a connection he first accepted to know if the content need to be rejected) At 08:56 2002-02-27, Holland, Stephen - EDS wrote: >All, > > > >I am having an issue with a firewall rule. We have the SMTP security server set up and that is working the best it can. However, when we get spammed we create a SMTP resource with the sender filed like <mailto:*@spamhost.*>*@spamhost.<mailto:*@spamhost.*>* under the match tab. We have a rule above the SMTP accept rule that says any going to any SMTP w/ resource "spam group" drop. But in the logs it says it is rejecting the message. I know about the vanish option, but A) how do I get the edited .pf file to push because every time it gets recompiled and edited back to drop and B) why is it rejecting instead of dropping. > > > > > >Thanks > > > >Stephen > > > > > > ------------------------------------------------------------ Yves Belle-Isle V.P. VE2YBI YB17 Email: [email protected] Responsable des Systemes Tel:Sogi Informatique Ltee. Fax:------------------------------------------------------------ ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
