I am experiencing a problem with CheckPoint Firewall-1 Version 4.1
SP1. The problem deals with a custom TCP application which runs on port
3110 and can respond on any source port. The error message I receive drops
the packet sent by the Secure Remote user because of my cleanup rule. Here
is what I have set up so far.
1) I created a service called Test that includes TCP a source address
range from 1-65000. I have also selected FTP as protocol type because I was
told it handled these type of connections better. I have tried with FTP and
None selected with the same consequences.
2) I created a rule that allows from Secure Remote User Group to my
Encryption Domain using my custom service Test.
3) I have also created a rule to allow traffic outbound from the
Encryption Domain to Any using my Test service.
Are there any steps that I may be forgetting. I have been on this with Tech
Support the last couple of days. Any ideas would be greatly appreciated.
Thanks,
Lee Christie (CCSA)
Security Engineer
CorpNet Security
____________________________________
trust.no.one.train.everyone
surround yourself with knowledge
www.corpnetsecurity.com
Lee Christie.vcf
