Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Open ports

To: [email protected]
Subject: Re: [FW-1] Open ports
From: Cheth Cheth <[email protected]>
Date: Fri, 15 Nov 2002 16:57:28 -0000
References: <[email protected]>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Are you by any chance going through NAT _before_ you hit the firewall, that
changes the source address to 10.1.1.x?/What is the source address in the
log?

Which line of the rule is it accepted on?/What is that rule?

You should have a stealth rule anyhow that drops anything destine for the
firewall as early as possible in the rule.

C.

----- Original Message -----
From: "Hasan, Irfan" <[email protected]>
To: <[email protected]>
Sent: Friday, November 15, 2002 3:15 PM
Subject: [FW-1] Open ports


> I'm using Checkpoint NG FP2 on Nokia IP330.
>
> I've only two rules in my firewall
>
> Source                     Destination     Service        Action
>
> LAN (10.1.1.x)       Any                Any             Allow
>
> Any                         Any                Any             Drop
>
> I removed all implied rules.
>
> But when I scan my firewall Internet connection from Internet,
>
>  I found Port 21, 80 and 389 are open.
>
> How do close all these open ports ??
>
> Hope someone give me a clue. Thks... Irfan
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

References:
- [FW-1] Open ports
  - From: "Hasan, Irfan" <[email protected]>

Prev by Date: [FW-1] 4.1 ServicePack re-instalation on AIX 4.3.3 ML10
Next by Date: Re: [FW-1] Open ports
Previous by thread: Re: [FW-1] Open ports
Next by thread: Re: [FW-1] Open ports
Index(es):
- Date
- Thread