[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] Newbie CheckPoint NG question
- To: [email protected]
- Subject: Re: [FW-1] Newbie CheckPoint NG question
- From: Robin Frousheger <[email protected]>
- Date: Tue, 22 Oct 2002 11:28:20 +1000
- Reply-To: Mailing list for discussion of Firewall-1 <[email protected]>
- Sender: Mailing list for discussion of Firewall-1 <[email protected]>
- Thread-Index: AcJ5GeE8Nr73uyMWQ7Swt3Jke12M1AAUBFcg
- Thread-Topic: [FW-1] Newbie CheckPoint NG question
It's a simple thing, but I usually forget to enable routing on Win2k servers...
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\IPEnableRouter = 1 [REG_DWORD]
Regards,
Robin
-----Original Message-----
From: Mayooran Pooranachandran [mailto:[email protected]]
Sent: Tuesday, 22 October 2002 1:17 AM
To: [email protected]
Subject: [FW-1] Newbie CheckPoint NG question
Importance: High
Hi,
I have installed CheckPoint NG FP2 on a Win2K advanced server box. Install went fine and I have it configured as per the docs with the following network objects follows:
Internal Networks: 192.168.249.0, 192.168.251.0
I also configured NAT for these networks to NAT to the external interface of the firewall. When I try to access the internet, the firewall logs show that the packets are being accepted, but I cannot seem to access any internet sites. The Log's accept line does not show any address translation info, simply the accept in green.
Rule 1:
Src: Trusted_Net
Dest: Any
Service: Any
Action: Accept
Track: Log
Installed On: Gateways.
Rule 2:
Src: any
Dest: any
service: any
action: drop
track: Log
Installed On: Gateway
Management and Enforcement modules are on the same box.
Could someone please tell me what I am doing wrong?
Thanks in advance.
-----------------------------
Mayooran Pooranachandran
Director, Network Services
Danier Leather Inc.
**********************************************************************
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the Network Administrator on +61 3 9667 6699.
This footnote also confirms that this email message has been scanned
for the presence of computer viruses and inappropriate content.
**********************************************************************
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================