Subject: Re: Cannot access local machine
I agree, unless we know more info like Solaris or NT, or how the net is
configured it is impossible to help. If Solaris, I would first check the
/etc/inetd.conf. In.telnetd may commented out on purpose. Then, I would check
to see if there are any restrictions to who can access the machine by checking
your rhosts.equiv file. When you get the error is it simply timing out or are
you getting the telnet prompt? As you can see more info is needed ...
Jim Lemieux
spiff <[EMAIL PROTECTED]> on 09/02/99 02:15:16 AM
To: Jimmy Lim KK <[EMAIL PROTECTED]>
cc: [EMAIL PROTECTED](bcc: Security/CT/ERNotes)
Subject: Re: Cannot access local machine
> Extranet Internet
> : :
> DMZ-- : FW A FW B-----DMZ
> :.............Local Lan ...............:
>
>
> Hello all, above is my fw configuration ( Firewall Checkpoint 3.0b )
> Fw A is my management module and Fw B is my inspection module
> >From both machine, I can ping any of the local LAN machines.
> However, when I tried to do a telnet from FW A or FW B to any
> local machine, it could not be connected ? What's wrong ?
>
> Please advise me. Thank you in advance.
>
> Limkk
>From the limited information about your firewall/router trust model with
regards to telnet ( daemons listening, /etc/services content,
access control lists, etc. ) I would hypothesize the following:
Did you set up this network? If so goto (end); if not then
I would guess that whoever did made sure to designate the firewalls as
untrusted hosts, and not to allow any internal connections from them,
except to each other in their roles as inspection module and management
module.
or
(end)
there's not enough info given to help and if the electrons that make up
this email weren't recycled, I'd be polluting the net with drivel. again.
spiff
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
