|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] M$ Terminal services with NG FP2 Win2k
If you have to do this, for goodness sake pipe any VNC connections over
SSH! I used TightVNC in a couple places myself, but configured it so
that it only paid attention to connections for loopback addresses. When
I need to get to it, I will:
1) ssh to remote box, mapping local port 5905 to remote's local port of
5900.
2) attach vnc to local ip:5.
There's lot of instructions on the various VNC sites showing how to do this.
Dale Wilson wrote:
Another option would be to install something like WinVNC
<http://www.uk.research.att.com/vnc/winvnc.html> . It's not as fast as
using terminal services, but at least it doesn't get in the way of
Check Point. It's also free (GPL).
At 10:57 05/06/2002 +0200, you wrote:
Hi,
in this scenario we must have remote control.
I know it is not absolutely secure, but we reserved special interface
for managment use only. This interface is connected to our support
center only.
I need to know if it is feature of FW-1 FP2 that there can't be instaled
terminal services on server?
Does the same think FP2 on Solaris with ssh?
Thanks for any comment
Michal
On St, 2002-06-05 at 09:34, Elmar van Mourik wrote:
> Hi Michal,
>
> Keep it secure... Don't use any remote control tool on your
firewall. So, I
> don't think it's strange that CP disables any possible "security
hole". With
> M$ Terminal Services (or PCAnywhere eg.) running on a firewall,
anyone can
> connect to it and disable or change any service or security policy.
>
> Elmar van Mourik
> System & Networkmanagement ZHEW
>
> -----Oorspronkelijk bericht-----
> Van: Kolarík Michal [ mailto:[email protected] ]
> Verzonden: dinsdag 4 juni 2002 16:00
> Aan: [email protected]
> Onderwerp: [FW-1] M$ Terminal services with NG FP2 Win2k
>
>
> Hi all,
>
> I have just instaled NG FP2 on Win2k server.
> I got problem. When I instaled CP FW-1 FP2 -> Terminal services was
> disabled.
> When I set u TS as automatic and I reboot server -> Cp Firewall-1
service
> was disabled.
> When I enable one of this services other one is disabled ( windows
disabled
> it).
> Does anyone meet with this strange behaviour?
>
> Thanks for any comment
>
> Michal
>
> ------------------------------
> Door de electronische verzending van het bericht kunnen er geen rechten
> ontleend worden aan de informatie. Als u deze e-mail onterecht heeft
> ontvangen, waarschuwt u dan de afzender via [email protected] en
verwijder
> de gegevens van de computer.
>
> Zuiveringsschap Hollandse Eilanden en Waarden, Dordrecht
> tel: +31 (0)78 6397100
> fax: +31 (0)78 6311871
> web: http://www.zhew.nl <http://www.zhew.nl/>
>
==============================================To set vacation, Out Of
Office, or away messages, send an email to
[email protected] in the BODY of the email add: set
fw-1-mailinglist nomail
==============================================To unsubscribe from this
mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
==============================================If you have any
questions on how to change your subscription options, email
[email protected]
==============================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
|
|