You may have enabled "Accept Outgoing Packets" under properties and you may
have this being processed before your other two rules.
-- Joe
At 02:11 PM 4/21/99 -0500, Lewandowski, Tom wrote:
>Hello all
>During the process of testing FireWall-1 ver 4.0 for AIX, I set up two
>rules. One rule denies any service from access directly to the firewall,
>and the second rule denies any service directly from the firewall to any
>other device, as per recommended by Checkpoint to protect the firewall.
>I've noticed however that I can log onto the firewall server via the counsel
>terminal and still telnet to nearby hosts. Shouldn't the second rule deny
>this? Thanks for your reply.
>
>Tom
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
