[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] Open ports

To: [email protected]
Subject: Re: [FW-1] Open ports
From: "Hasan, Irfan" <[email protected]>
Date: Sun, 17 Nov 2002 23:36:01 +0800
Reply-To: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>
Thread-Index: AcKOI3F+5LOidAJFSrmd3fSkFyl9QgAKq2Lo
Thread-Topic: Re: [FW-1] Open ports
Many thanks for all the response.

I can't trun off Voyager because I need to use it from local network for management.

When I telnet to port 80 or use web browser from internet there is no response
but when I use Retina Network scanner it says the port 80 is open.

Is there a way to shut-off port 80 on Internet interface and keep it live on LAN
connection???


        -----Original Message-----
        From: Cheth [mailto:[email protected]]
        Sent: Sun 11/17/2002 5:52 PM
        To: [email protected]
        Cc:
        Subject: Re: [FW-1] Open ports



        Sure....but that wasn't Irfan's point. His point was that the firewall rule
        should be dropping the traffic, but isn't.

        Regards,

        C.


        ----- Original Message -----
        From: "<Aaron Reynolds>" <[email protected]>
        To: <[email protected]>
        Sent: Friday, November 15, 2002 5:00 PM
        Subject: Re: [FW-1] Open ports


        > You need to go into voyager and turn the stuff off.  The firewall can have
        > services listening, which will then be blocked by the rulebase.  It is
        best
        > to turn them off in voyager, so you don't accidentally open something up.
        >
        > -Aaron
        >
        > -----Original Message-----
        > From: Carlos Santos [mailto:[email protected]]
        > Sent: Friday, November 15, 2002 8:51 AM
        > To: [email protected]
        > Subject: Re: [FW-1] Open ports
        > Importance: High
        >
        >
        > It's rather strange you have that, but then again, never worked with a
        > nokia equip so why don't you try a more direct aproach like
        >
        > Any -> FW-Module -> Any -> Drop -> Log
        >
        > Hope it helps
        >
        > CS
        >
        > -----Original Message-----
        > From: Mailing list for discussion of Firewall-1
        > [mailto:[email protected]] On Behalf Of
        > Hasan, Irfan
        > Sent: ta-feira, 15 de Novembro de 2002 15:15
        > To: [email protected]
        > Subject: [FW-1] Open ports
        >
        >
        > I'm using Checkpoint NG FP2 on Nokia IP330.
        >
        > I've only two rules in my firewall
        >
        > Source                     Destination     Service        Action
        >
        > LAN (10.1.1.x)       Any                Any             Allow
        >
        > Any                         Any                Any             Drop
        >
        > I removed all implied rules.
        >
        > But when I scan my firewall Internet connection from Internet,
        >
        >  I found Port 21, 80 and 389 are open.
        >
        > How do close all these open ports ??
        >
        > Hope someone give me a clue. Thks... Irfan
        >
        > =================================================
        > To set vacation, Out Of Office, or away messages,
        > send an email to [email protected]
        > in the BODY of the email add:
        > set fw-1-mailinglist nomail
        > =================================================
        > To unsubscribe from this mailing list,
        > please see the instructions at
        > http://www.checkpoint.com/services/mailing.html
        > =================================================
        > If you have any questions on how to change your
        > subscription options, email
        > [email protected]
        > =================================================
        >
        >
        > _____________________________________________________________________
        >                       INTERNET MAIL FOOTER
        > A presente mensagem pode conter informação considerada confidencial.
        > Se o receptor desta mensagem não for o destinatário indicado, fica
        > expressamente proibido de copiar ou endereçar a mensagem a terceiros.
        > Em tal situação, o receptor deverá destruir a presente mensagem e por
        > gentileza informar o emissor de tal facto.
        > ---------------------------------------------------------------------
        > Privileged or confidential information may be contained in this
        > message. If you are not the addressee indicated in this message, you
        > may not copy or deliver this message to anyone. In such case, you
        > should destroy this message and kindly notify the sender by reply
        > email.
        > ---------------------------------------------------------------------
        >
        > =================================================
        > To set vacation, Out Of Office, or away messages,
        > send an email to [email protected]
        > in the BODY of the email add:
        > set fw-1-mailinglist nomail
        > =================================================
        > To unsubscribe from this mailing list,
        > please see the instructions at
        > http://www.checkpoint.com/services/mailing.html
        > =================================================
        > If you have any questions on how to change your
        > subscription options, email
        > [email protected]
        > =================================================
        >
        > =================================================
        > To set vacation, Out Of Office, or away messages,
        > send an email to [email protected]
        > in the BODY of the email add:
        > set fw-1-mailinglist nomail
        > =================================================
        > To unsubscribe from this mailing list,
        > please see the instructions at
        > http://www.checkpoint.com/services/mailing.html
        > =================================================
        > If you have any questions on how to change your
        > subscription options, email
        > [email protected]
        > =================================================
        >

        =================================================
        To set vacation, Out Of Office, or away messages,
        send an email to [email protected]
        in the BODY of the email add:
        set fw-1-mailinglist nomail
        =================================================
        To unsubscribe from this mailing list,
        please see the instructions at
        http://www.checkpoint.com/services/mailing.html
        =================================================
        If you have any questions on how to change your
        subscription options, email
        [email protected]
        =================================================


=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
Prev by Date: [FW-1] hello to all the gurus out there
Next by Date: Re: [FW-1] Open ports
Prev by thread: Re: [FW-1] Open ports
Next by thread: Re: [FW-1] Open ports
Index(es):
- Date
- Thread