RE: [FW1] Port Service Issue

Fri, 02 Feb 2001 10:58:50 -0800 


Just a guess, but try this.  Also, I am assuming that your WWW server is off
a third interface on the FW (DMZ), and that you do not want your internal
clients to access the Internet.  And that you are able to configure your WWW
server to listen on ports 80 and 88.

Create a rule that allows your internal clients to access the WWW server on
port 88 and a second rule that allows everyone else to access the WWW server
on port 80.  When your internal clients try to connect they will be allowed
by your internal clients rule and when anyone else (Internet) tries to
connect they will be allowed by the other rule.

Like I said, just a guess.  I have no way of testing this here.

HTH,

Duke

-----Original Message-----
From: Jey Baskar [mailto:[EMAIL PROTECTED]]
Sent: Friday, February 02, 2001 11:43 AM
To: [EMAIL PROTECTED]
Subject: [FW1] Port Service Issue



Hello,

    I am running CheckPoint Firewall-1 on a NT Server. I have a web server
(HOSTA) which runs the webservice on port 88. 

The problem I am encountering is the access from the Internet to this
webservice. My firewall has the HTTP service configured on port 80. If, I
change this HTTP service from port 80 to 88, I can reach the webservice from
the internet. But the internal clients sitting inside the firewall cannot
reach the Internet.

For the internal clients to access the internet, I had to configure the HTTP
service on port 80. 

Is there any workaround where I can have the HTTP configured for PORT 80 and
88 simultaneously?

Thanks,
Jey



============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Reply via email to