[FW-1] AW: [FW-1] HTTP Resources

Wed, 07 Jan 2004 15:09:06 -0800 

hi,

your rule

source: any
destination: internal net

permits access from the internet into your private network, depending on your NAT 
rules is this a really security-problem and has nothing to do with access of your 
clients to the internet.

you have to look for a rule

internal_net -> any -> http-ressource -> accept

cheers
reinhard

        -----UrsprÃngliche Nachricht-----
        Von: Juan Andres Galavis [mailto:[EMAIL PROTECTED]
        Gesendet: Mi 07.01.2004 21:23
        An: [EMAIL PROTECTED]
        Cc:
        Betreff: [FW-1] HTTP Resources



        Hello Gurus,

        I'm trying to configure http resources but can't really manage to achieve
        what I need.

        Here is the big picture:
        I've got this rule: source->any destination->my_intenal_net
        service->http_resource action->accept
        My internal net can perfectly surf on the web, but they cannot download any
        attachments or applications. This is Ok (it's great!) but some users (not
        all) need to download attachments and applications.

        What I am trying to achieve is to permit web surfing but limit web
        downloading (attachments, applications, documents, etc.). Just specific
        users are authorized to download files from Internet.

        Please guide me with your knowledge to accomplish this task! Thanks in
        advance....

        Saludos/Cheers,

        Juan AndrÃs GalavÃs

        =================================================
        To set vacation, Out-Of-Office, or away messages,
        send an email to [EMAIL PROTECTED]
        in the BODY of the email add:
        set fw-1-mailinglist nomail
        =================================================
        To unsubscribe from this mailing list,
        please see the instructions at
        http://www.checkpoint.com/services/mailing.html
        =================================================
        If you have any questions on how to change your
        subscription options, email
        [EMAIL PROTECTED]
        =================================================




=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================

Reply via email to