Re: [FW-1] Firewall drops the connection, specific rule is defined to en

Subject:	Re: [FW-1] Firewall drops the connection, specific rule is defined to enable the access
From:	"Hendriks, D." <D.Hendriks AT INFO.UMCN DOT NL>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Wed, 29 Sep 2004 11:23:20 +0200

Did you check for address spoofing issues?

Dion

> -----Oorspronkelijk bericht-----
> Van: Mailing list for discussion of Firewall-1
> [mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM]Namens rbhan
> Verzonden: woensdag 29 september 2004 9:05
> Aan: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
> Onderwerp: [FW-1] Firewall drops the connection, specific rule is
> defined to enable the access
>
>
> Need advice to debug the firewall drop issue.
> Securemote connection gets decrypted at the Internet firewall in a two
> tiered architucture(One facing to the Internet & other one is
> internal).
> Enryption domain is behind internal firewall.
> Upon decryption, source address of the securemote connection
> gets nated
> using nat pool  & enters Internal firewall. On Internal
> firewall specific
> rule is defined to enable access from natpool vpn network to
> the encryption
> domain.
> For some reason connections initiated from natpool vpn network to the
> encryption domain gets dropped by the Internal firewall even
> though specific
> rule isdefined to enable the access.
> Any suggestion why firewall drops the connections?
> Both the firewalls are NGFP3 on SUN hardware
>
> regards
> rbhan
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to LISTSERV AT amadeus.us.checkpoint DOT com
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> fw-1-owner AT ts.checkpoint DOT com
> =================================================
>

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] Firewall drops the connection, specific rule is defined to enable the access, rbhan Re: [FW-1] Firewall drops the connection, specific rule is defined to enable the access, Hendriks, D. <=

Previous by Date:	Re: [FW-1] JPEG/GDI+ DLL Exploit, Andras Kis-Szabo
Next by Date:	[FW-1] FW-Policy to Restrict Users to access specific website !!!, Nap Tarayao
Previous by Thread:	[FW-1] Firewall drops the connection, specific rule is defined to enable the access, rbhan
Next by Thread:	[FW-1] FW-Policy to Restrict Users to access specific website !!!, Nap Tarayao
Indexes:	[Date] [Thread] [Top] [All Lists]