Re: [FW1] Checkpoint specific Port hiding

iden fw Wed, 24 Jan 2001 12:09:50 -0800

Yes, it is possible. A very good recommedation to make them invisible to the outside world.

I am assuming you have a single gateway which is also your management station, and that you are not using SecuRemote:

You should build specific rules that allow your gui-clients to manage (FW1_mgmt) the firewall. Then add a stealth rule after that. Then you can go under Policy --> Properties, and uncheck "FW-1 Control Connections".

If you have a distributed configuration, it gets just a little more complicated...

-iden_fw

>From: [EMAIL PROTECTED]

>To: [EMAIL PROTECTED]

>Subject: [FW1] Checkpoint specific Port hiding

>Date: Wed, 24 Jan 2001 14:19:35 -0500

>We just had a security audit and I need to know how to hide ports 256, 257

>and 258.

>These are used by Checkpoint but I was told to make them invisible to the

>outside.

>Is this possible?

>Thanks

>Regis

>================================================================================

> To unsubscribe from this mailing list, please see the instructions at

> http://www.checkpoint.com/services/mailing.html

>================================================================================

Get your FREE download of MSN Explorer at http://explorer.msn.com

================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================

Re: [FW1] Checkpoint specific Port hiding

Reply via email to