Guys,
A thought on the FW-1 and RPC - the setup we're "playing" with is:
client --- FW-1 ---- network ---- FW-1 --- server
Both firewalls do static address translation. Has this the potential to
disturb our party?
Jeroen
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]
Sent: Thursday, July 27, 2000 1:00 PM
To: [EMAIL PROTECTED]
Subject: [FW1] FW-1 and RPC
Hello,
I'm having the nasty situation that I'm forced to allow RPC traffic through
our firewall. The firewall we use is a FW-1 version 3.0 - so far I've done
the following:
- created an RPC service object with the program number set as requested
- enabled RPC control in the Policy->Properties->Services panel
- added "#define RPC_OVER_TCP" to $FWDIR/lib/base.def (according to
phoneboys FAQ)
- fwstop/start
The rule is like:
<source><destination><newly defined RPC service, UDP 111, TELNET><accept>...
Still the RPC sessions are dropped (not the portmapper, but the session
itself). Is there anything I've missed?
To be complete; we do use static address translation for this specific host.
Hope you guys can help me on this one,
Thanks and regards,
Jeroen van Dongen
Infonet-Europe
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
