Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] CVP and security servers

To: [email protected]
Subject: Re: [FW-1] CVP and security servers
From: Russell Aspinwall <[email protected]>
Date: Thu, 18 Apr 2002 15:28:55 +0100
References: <003d01c1e6dc$d357ba20$03060b0a@ukduk000>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Hi Richard,

First I would recommend you upgrade to InterScan v3.6 and download the
latest security scanner.
I found the easiest way to configure Email scanning was to put a Mail
Relay into a DMZ and filter all traffic to and from it to the Internal
Email Server. This simplifies the configuration of the FW-1 and
InterScan, I can easily modify the Mail Relay to deny IP addresses or
Domains that are sending SPAM.

FTP scanning is slow unless your server is very fast, however the entire
file must be downloaded to the virus scanner and checked before you can
trickle the data through. If your username and passwords are not being
accepted have you configured users within FW-1 so that it authenicates
before permit ftp access?

Regards

Russell
richard marshall wrote:
>
> Hello all,
>
> I realise this subject keeps coming up, and this questions has probably been
> asked before, but i can't find a clear explaination in the archives...
>
> I am trying to implement CVP virus scanning for FTP and SMTP using Trend
> Interscan 3.52 and FW-1 4.1 SP5. I am trying to understand the relationship
> between the CVP server and the FW-1 Security Servers.
>
> Firstly, I have altered my ftp rule from:
> Any -> ftp server -> ftp -> accept -> log ....
> to:
> Any -> ftp server -> ftp_resource -> accept -> log...
>
> When i try to open an ftp connection to the ftp server i now get the FW-1
> security server asking for a login, but all the login accounts are on the
> FTP server, so login fails. How do i make the security server transparent,
> or disabled completly so that the original FTP server object functions as
> before, but with virus scanning?
>
> I am also working with smtp cvp scanning. Could someone explain how the FW-1
> smtp security server is involved in this process please?
>
> hope the question(s) aren't too vague!
>
> regards and thanks
>
> rich
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

References:
- [FW-1] CVP and security servers
  - From: richard marshall <[email protected]>

Prev by Date: [FW-1] Licensing
Next by Date: Re: [FW-1] Mangement Console Migration
Previous by thread: [FW-1] CVP and security servers
Next by thread: [FW-1]
Index(es):
- Date
- Thread