Do you have "Accept ICMP Requests" selected in Global Properties? Also,
SmartDefense and Global Property rules take affect no matter what you
define in your rulebase (for the most part). Have you tested a manual
ping from the monitoring server?
Thanks,
Mark
--------------------------------------------------------
Mark E. Quigley
Network Administrator
Board for State Academic Awards
55 Paul Manafort Dr
New Britain CT 06053fax
http://www.charteroak.edu
[email protected]
-----Original Message-----
From: Brad Pinkston [mailto:[email protected]]
Sent: Thursday, January 23, 2003 4:45 PM
To: [email protected]
Subject: [FW-1] SmartDefense
We have a monitoring server which sends icmp packets to our firewall to
monitor our serial interface. SmartDefense sees these as in ICMP
attack.
Attack Info: Echo request too long
icmp-type: 8
icmp-code: 0
Even after specifically declaring access SmartDefense still isn't smart
enough to realize this. How can I solve this problem.
Also, what all services aren't included in any by default? Is icmp?
Brad Pinkston
Centenary College of LA
Firewall/Network Administrator
IT [email protected]
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================