the link is http://www.systemexperts.com/tutors/HardenW2K101.pdf
>>> [EMAIL PROTECTED] 10/30/02 10:58AM >>> There is a registry key hkey_local_machine\system\current_control_set\services\tcpip\parameters\EnableIPRouting, which you must change from 0 to 1. You may want to hunt down Hardening w2k 101 by Philip Cox (do a google search, it is a pdf out there somewhere), which gives a good overview of the steps involved in locking down a w2k server to the point where it can make a good firewall. The registry key is /Gordon -----Original Message----- From: Mayooran Pooranachandran [mailto:Mayooran@;DANIER.COM] Sent: Monday, October 21, 2002 11:17 AM To: [EMAIL PROTECTED] Subject: [FW-1] Newbie CheckPoint NG question Importance: High Hi, I have installed CheckPoint NG FP2 on a Win2K advanced server box. Install went fine and I have it configured as per the docs with the following network objects follows: Internal Networks: 192.168.249.0, 192.168.251.0 I also configured NAT for these networks to NAT to the external interface of the firewall. When I try to access the internet, the firewall logs show that the packets are being accepted, but I cannot seem to access any internet sites. The Log's accept line does not show any address translation info, simply the accept in green. Rule 1: Src: Trusted_Net Dest: Any Service: Any Action: Accept Track: Log Installed On: Gateways. Rule 2: Src: any Dest: any service: any action: drop track: Log Installed On: Gateway Management and Enforcement modules are on the same box. Could someone please tell me what I am doing wrong? Thanks in advance. ----------------------------- Mayooran Pooranachandran Director, Network Services Danier Leather Inc. ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
