Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW-1] Securing the FW-1 Firewall

To: [email protected]
Subject: [FW-1] Securing the FW-1 Firewall
From: Gordon Webber <[email protected]>
Date: Tue, 26 Feb 2002 16:16:40 +0000
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Hi All,

I have FW-1 on Nokia.
I have implemented VRRP as part of the fw-1/Nokia failover solution, and
therefore have both "real" and "virual" addresses for my interfaces.
I have closed the firewall as best as I am allowed (I need to let some
remote systems "ping"), but still the "real" IP address of each interface
is being shown in traceroutes !!     What have I missed ? - how do I make
my fw-1 totally anonymous ?

Just in case I missed anything else, what are the general guidelines for
securing the fw-1 ??
I have all my management activity limited to a completely separate, secured
lan and I only have specific rules (ie. the only "any" destinations I have
are either for port 80 or for "drop" actions). I have anti-spoofing set as
recommended, but i do not have SYNdefender active as yet.
Anything else ? .............................

Cheers, Gordon

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: [FW-1] Cisco Secure ACS
Next by Date: Re: [FW-1] upgrade 4.1 -> NG FP-1
Previous by thread: [FW-1] Cisco Secure ACS
Next by thread: Re: [FW-1] Securing the FW-1 Firewall
Index(es):
- Date
- Thread