Chris,
I'm not sure why your gateway would be originating traffic to that
host/port, but the reason it may be allowing it on rule 0 is the implied
rules. Check the 'policy properties' setup | 'security policy' tab |
'accept outgoing packets originating from gateway' box. Unselect it and see
if the traffic continues.
Todd
> -----Original Message-----
> From: Chris Close [mailto:[EMAIL PROTECTED]]
> Sent: Monday, March 12, 2001 11:32 AM
> To: [EMAIL PROTECTED]
> Subject: [FW1] Rule 0 Accept from fw to external host on port 80?
>
> Anyone have an idea why I would be getting a log entry of a Rule 0 Accept
> that originated from the FW1 box itself connecting on port 80 to an
> external host IP address 209.67.27.69. The address turns out to be a web
> server for comics.com. There's no GUI installed on the FW1 box let alone
> a browser, and for this to be a rule 0 accept seems strange. Anyone got
> any ideas?
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
