[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Open ports
Are you by any chance going through NAT _before_ you hit the firewall, that changes the source address to 10.1.1.x?/What is the source address in the log? Which line of the rule is it accepted on?/What is that rule? You should have a stealth rule anyhow that drops anything destine for the firewall as early as possible in the rule. C. ----- Original Message ----- From: "Hasan, Irfan" <[email protected]> To: <[email protected]> Sent: Friday, November 15, 2002 3:15 PM Subject: [FW-1] Open ports > I'm using Checkpoint NG FP2 on Nokia IP330. > > I've only two rules in my firewall > > Source Destination Service Action > > LAN (10.1.1.x) Any Any Allow > > Any Any Any Drop > > I removed all implied rules. > > But when I scan my firewall Internet connection from Internet, > > I found Port 21, 80 and 389 are open. > > How do close all these open ports ?? > > Hope someone give me a clue. Thks... Irfan > > ================================================= > To set vacation, Out Of Office, or away messages, > send an email to [email protected] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [email protected] > ================================================= > ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|