Greetings all, I've stumbled into a bit of a conundrum. I'm using Version 3.0b of Firewall 1 and S-Key validation for external telnet sessions by particular users to particular hosts. It is my understanding that there are two places to define acceptable host destinations, the Rule Base Editor's main screen for our "telnet" services, and the individual user's properties under Allowed Destinations. If I specify the firewall object on the Rule Base Editor's main screen I am able to telnet into the firewall host after authentication even if the firewall object is EXCLUDED my User properties? Allowed Destination list. However, if I add it to my User Properties? Allowed Destination and remove it from the Rule Base Editor'? main screen, I cannot telnet into the firewall after authentication. Does this mean that the Destination for the telnet service on the Rule Base Editor's main screen totally over-rides User Properties allowed destination? If so, what's the point of User Properties allowed destination? Thanks! Brett Sondrup System Administrator Information Quest Phone (760) 431-7474 5838 Edison Place Fax (760) 431-8860 Carlsbad, CA 92008 Email: [EMAIL PROTECTED] - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
