Re: [FW1] Allow pinging or not?

Igor U.Miturin Wed, 24 May 2000 12:04:33 -0700

Hi!

View "Implied Pseudo Rules".

In Properties, disable Implied Ruses "Accept ICMP".
If your security politic "Yours_network to Any Any Accept",
setup rule for entering web-server: "Any to Web icmp-proto accept".
Then set "Any to Yours_network echo-reply accept" (for those
computers which have an output in the Internet).

Best regards,
Igor Miturin

Complex Microsoft PostSP6Hotfix (16 items):
http://www.chat.ru/~imiturin/index.html



----- Original Message -----
From: <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, May 23, 2000 11:57 PM
Subject: RE: [FW1] Allow pinging or not?


>
> In Firewall-1 how do you prevent ICMP pings to individual servers?  In my
> rules I'm not allowing icmp but I can still ping my servers from the
> Internet.
>
> Damir Matanic
> Chicago
>
>
>
>
============================================================================
====
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
>
============================================================================
====



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================
Re: [FW1] Allow pinging or not?

Reply via email to
