I have a couple of questions about setting up web server rules on FW1. Our
setup is shown below. Pretty straight forward. We have a rule that is
written as
ANY BIGIP-VIP HTTP, HTTPS ACCEPT
We have no rule allowing any traffic back out from BIGIP-VIP since Stateful
inspection should get the traffic back to the user. I am seeing though log
entries from our Cleanup rule (any any any drop) traffic (http)
from our web servers going back out to IP's that appear to be
customers....Is there something that I am missing in the rules that should
be there???
Tim
Internet
|
|
CP FW1-41 SP1
|
|
BigIP Boxes
|
|
Web Server Farm
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
