Re: [FW-1] SAM question

["Igor U.Miturin" <imiturin@FW1-NOSPAMRUSSLAVBANK.COM>]

Hi!

It`s correct for FW 4.x, but incorrect for FW NG :-(

Igor

----- Original Message -----
From: "Frank Knobbe" <fknobbe@KNOBBEITS.COM>
To: <FW-1-MAILINGLIST@beethoven.us.checkpoint.com>
Sent: Tuesday, August 13, 2002 10:53 PM
Subject: Re: [FW-1] SAM question]


> On Tue, 2002-08-13 at 02:26, Lars Troen wrote:
> > When an ip address is blocked by SAM the firewall now rejects trafic
from this host. Is it possible to make the firewall drop this trafic silent
instead?
>
>
> Lars,
>
> yes there is. Check the file <fw1dir>/lib/code.def. In there you see
> definitions for SAM_LOG, SAM_NOTIFY and right after you see a 'reject'
> followed by stuff in a block. Just change the reject to drop, and
> reinstall your policy (I don't remember if a restart of fw1 is
> necessary). After that change, fw1 will silently drop the SAM-blocked
> packets.
>
> Regards,
> Frank

=================================================
To set vacation, Out Of Office, or away messages,
send an email to LISTSERV@lists.us.checkpoint.com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner@ts.checkpoint.com
=================================================