I don't know much about the setup with 4.1 but in NG the policy is created
much like the rulebase for the firewall itself.
SecureClient can be bound / not bound to individual Lan and dial-up
connections. If an interface is active and SC is bound to it, then you get
the protection of a policy on that interface unless you stop the SC
service.
If you authenticate to your FW then you download the policy you created,
otherwise SC runs the 'default policy' which is:
- outbound any any accept
- inbound any any deny
Julian
|---------+---------------------------------------------->
| | Arie Gilboa |
| | <[EMAIL PROTECTED]> |
| | Sent by: Mailing list for |
| | discussion of Firewall-1 |
| | <[EMAIL PROTECTED]|
| | kpoint.com> |
| | |
| | |
| | 15/10/2002 15:35 |
| | Please respond to Mailing list for |
| | discussion of Firewall-1 |
| | |
|---------+---------------------------------------------->
>----------------------------------------------------------------------------------------------|
|
|
| To: [EMAIL PROTECTED]
|
| cc:
|
| Subject: [FW-1]
|
>----------------------------------------------------------------------------------------------|
Hello!
We have VPN-1 4.1 sp5 and we would like to install secure-client (personal
firewall) on PCs.
As much as I understand, Secure-Client receives the policy which is defined
in the VPN Gateway, in first connection
or in case updates in policy. I know that in 4.1 sp5, there are very poor
options and it's improved in NG.
But, I've been told that the secure-client policy is active on the PC only
when the PC is connected to the VPN Gateway,
and for example, if the PC is restarted and just access the Internet for
his
fun, the secure-client and it policy are inactive !!!..
Is it ?!?...
Arie.
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
________________________________________________________________________
This e-mail has been scanned for all viruses by Star Internet.
**********************************************************************
Zenith Insurance Management Limited Registered No. 3805632
Registered @ Zenith House, Market Place, Haywards Heath,
West Sussex, RH16 1DB.
NOTICE:
This email and any files transmitted with it are confidential and
intended solely for the use of the individual or entity to whom they
are addressed. If you have received this email in error please notify
the [EMAIL PROTECTED] and delete the message
and any attachments accompanying it immediately.
**********************************************************************
________________________________________________________________________
This e-mail has been scanned for all viruses by Star Internet.
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
