the link is http://www.systemexperts.com/tutors/HardenW2K101.pdf

>>> [EMAIL PROTECTED] 10/30/02 10:58AM >>>
There is a registry key 
hkey_local_machine\system\current_control_set\services\tcpip\parameters\EnableIPRouting,
 which you must change from 0 to 1.  You may want to hunt down Hardening w2k 101 by 
Philip Cox (do a google search, it is a pdf out there somewhere), which gives a good 
overview of the steps involved in locking down a w2k server to the point where it can 
make a good firewall. The registry key is

/Gordon

-----Original Message-----
From: Mayooran Pooranachandran [mailto:Mayooran@;DANIER.COM]
Sent: Monday, October 21, 2002 11:17 AM
To: [EMAIL PROTECTED]
Subject: [FW-1] Newbie CheckPoint NG question
Importance: High



Hi,

I have installed CheckPoint NG FP2 on a Win2K advanced server box.  Install went fine 
and I have it configured as per the docs with the following network objects follows:

Internal Networks: 192.168.249.0, 192.168.251.0
I also configured NAT for these networks to NAT to the external interface of the 
firewall.  When I try to access the internet, the firewall logs show that the packets 
are being accepted, but I cannot seem to access any internet sites.  The Log's accept 
line does not show any address translation info, simply the accept in green.

Rule 1:
Src: Trusted_Net
Dest: Any
Service: Any
Action: Accept
Track: Log
Installed On: Gateways.

Rule 2:
Src: any
Dest: any
service: any
action: drop
track: Log
Installed On: Gateway

Management and Enforcement modules are on the same box.

Could someone please tell me what I am doing wrong?

Thanks in advance.

-----------------------------
Mayooran Pooranachandran
Director, Network Services
Danier Leather Inc.

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================

Reply via email to