Hi all, We have a CheckPoint Firewall NGX running on Solaris System with three network interfaces. 1st interface is connected to our internal network(behind which many LANs are sitting), 2nd interface leads to our DMZ zone and 3rd interface is connected to the internet through Cisco 2600 router(connected to Ethernet interface of the router), where our WAN link gets terminated(Serial interface of the 2600 router). Our WAN link is a leased line with 2mbps capacity, but the Committed Information Rate(CIR) is only 750kbps. Now i need to define rule limit & rule guarantee bandwidths for different protocols (like http, ftp, smtp etc) of my out going traffic(from my corporate network to internet). My question is when defining the rule limit & rule guarantee bandwidths what should i take into consideration, whether the CIR(750kbps) or the leased line capacity(2mbps). Another basic question is since my firewall internet interface is connected to the Ethernet internet interface of the router(both are of 100Mbps), defining the rule limit & rule guarantee on the internet interface of the firewall as per the bandwidth of the WAN does have any effect on the firewall functionality.
Any help is greatly appreciated Regards, Sankar -- Open WebMail Project (http://openwebmail.org) ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
