Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] too many hosts--some explantion

To: [email protected]
Subject: Re: [FW-1] too many hosts--some explantion
From: Leonardo Boulton <[email protected]>
Date: Fri, 23 Aug 2002 06:40:35 -0400
Importance: Normal
In-reply-to: <[email protected]>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

When you define an interface as internal, it protects everything that's on
that side of the interface and counts it as a "protected host" or "Internal
host". If you define the interface that leads to the Internet Router, it
will see every IP on the Internet as internal and protected....

That's why you should be carefull with that.



-----Mensaje original-----
De: Mailing list for discussion of Firewall-1
[mailto:[email protected]]En nombre de liu
Enviado el: Friday, August 23, 2002 1:27 AM
Para: [email protected]
Asunto: [FW-1] too many hosts--some explantion


Thanks to all the people that gave me suggestion and help.

1.fw lichosts -->It shows a lot of IP address which the fw consider in
its protection.But most of them are in the local networks(192.168.3.0/24
I only use one of them as GUIClient) and some are the garbage address
used in test period.

2.external.if -->interface 3(210.232.3.2)

3.I create fw objects and make it a "internal" side object for if I make
it external there is no object when install(in GUIClient).--->Is it
right??


    router
   |
----------   3->210.232.3.2/29 (DMZ)

----------   4->210.232.3.65/26(Internal Hosts but own ips that can be
routed)

----------   5->192.168.3.1/24 (For GUI Client)

anyway

Many thanks

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

References:
- [FW-1] too many hosts--some explantion
  - From: liu <[email protected]>

Prev by Date: Re: [FW-1] too many hosts--some explantion
Next by Date: [FW-1] Recall: supported encryption in firewall-1
Previous by thread: [FW-1] too many hosts--some explantion
Next by thread: [FW-1] Question about Intallation Type of NG
Index(es):
- Date
- Thread