[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW-1] Securing the FW-1 Firewall
Hi All, I have FW-1 on Nokia. I have implemented VRRP as part of the fw-1/Nokia failover solution, and therefore have both "real" and "virual" addresses for my interfaces. I have closed the firewall as best as I am allowed (I need to let some remote systems "ping"), but still the "real" IP address of each interface is being shown in traceroutes !! What have I missed ? - how do I make my fw-1 totally anonymous ? Just in case I missed anything else, what are the general guidelines for securing the fw-1 ?? I have all my management activity limited to a completely separate, secured lan and I only have specific rules (ie. the only "any" destinations I have are either for port 80 or for "drop" actions). I have anti-spoofing set as recommended, but i do not have SYNdefender active as yet. Anything else ? ............................. Cheers, Gordon ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|