Sorry, it was a typo my mistake,
The rule goes as Reinhard says: internal_net -> any -> http-ressource ->
accept
I just want to block downloads from the Internet to certain users.
Saludos/Cheers,
Juan Andr�s Galav�s
Reinhard Stich
<[EMAIL PROTECTED]
-SECURITY.AT> To
Sent by: Mailing [EMAIL PROTECTED]
list for INT.COM
discussion of cc
Firewall-1
<FW-1-MAILINGLIST Subject
@AMADEUS.US.CHECK [FW-1] AW: [FW-1] HTTP Resources
POINT.COM>
07/01/2004 05:51
p.m.
Please respond to
Mailing list for
discussion of
Firewall-1
<FW-1-MAILINGLIST
@AMADEUS.US.CHECK
POINT.COM>
hi,
your rule
source: any
destination: internal net
permits access from the internet into your private network, depending on
your NAT rules is this a really security-problem and has nothing to do with
access of your clients to the internet.
you have to look for a rule
internal_net -> any -> http-ressource -> accept
cheers
reinhard
-----Urspr�ngliche Nachricht-----
Von: Juan Andres Galavis [mailto:[EMAIL PROTECTED]
Gesendet: Mi 07.01.2004 21:23
An: [EMAIL PROTECTED]
Cc:
Betreff: [FW-1] HTTP Resources
Hello Gurus,
I'm trying to configure http resources but can't really manage to
achieve
what I need.
Here is the big picture:
I've got this rule: source->any destination->my_intenal_net
service->http_resource action->accept
My internal net can perfectly surf on the web, but they cannot
download any
attachments or applications. This is Ok (it's great!) but some
users (not
all) need to download attachments and applications.
What I am trying to achieve is to permit web surfing but limit web
downloading (attachments, applications, documents, etc.). Just
specific
users are authorized to download files from Internet.
Please guide me with your knowledge to accomplish this task! Thanks
in
advance....
Saludos/Cheers,
Juan Andr�s Galav�s
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
