Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] logging into an NT domain controller through FW-1

To: [email protected]
Subject: Re: [FW-1] logging into an NT domain controller through FW-1
From: Andre Faille <[email protected]>
Date: Fri, 9 Aug 2002 14:26:23 -0400
Importance: Normal
In-reply-to: <[email protected]>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Russell

we have a nt 4.0 domain also and this is how we set it up...

1. remote users have SecuRemote to login via the internet in an encrypted
VPN (Checkpoint firewall-1 NG)
2. on their own machine, we setup DHCP but with a fixed WINS server setup,
this allows them to see the NT domains once they get passed thru the
firewall with SecuRemote
3. if they doube-click on a machine to access it this is what happens:
        a. if their own PC was part of the domain (like a portable), WINS
recognizes it and does not ask for any logins.
        b. if their own PC was never part of the domain, they get prompted for a
username/login.

Hope this helps,

Andre Faille

-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:[email protected]]On Behalf Of
RUSSELL T. LEWIS
Sent: August 9, 2002 12:37 PM
To: [email protected]
Subject: [FW-1] logging into an NT domain controller through FW-1


We now have FW-1 SmallOffice (using enterprise install so I can use the GUI,
not
the web config) running on NT4.  This was installed off a NG FP2 CD.  We are
still in the 30 day trial.
I have the firewall in a test setup.  I set an allow all rule, and set up
NAT
with the Hide option to the LAN card, and NAT using Static to the DMZ.  The
client can access the Internet through the firewall just fine.  I now am
removing the allow all, and adding only the needed rules.  We will have an
NT 4
domain controller in the DMZ, and all the clients need to login to this via
the
LAN.  I know this is not the BEST method to do things, but with the current
hardware that's how it's got to be done.  we will upgrade servers and get
the
domain controller out of the DMZ after the firewall is up and I have a
chance to
breath again.  Does anyone know where I can find what rule(s) to create to
do
this?  I can't seem to find it anywhere.  I'll keep looking, but any info
you
can provided is greatly appreciated.
Thanks a ton!
-Russell Lewis

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

References:
- [FW-1] logging into an NT domain controller through FW-1
  - From: "RUSSELL T. LEWIS" <[email protected]>

Prev by Date: Re: [FW-1] SAD question
Next by Date: Re: [FW-1] VPN performance metrics
Previous by thread: [FW-1] logging into an NT domain controller through FW-1
Next by thread: Re: [FW-1] logging into an NT domain controller through FW-1
Index(es):
- Date
- Thread