Firewall-1
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [FW-1] AW: [FW-1] SmartDefense and Java-based webpage

from Joe Pope [Permanent Link]
Subject: Re: [FW-1] AW: [FW-1] SmartDefense and Java-based webpage
From: Joe Pope <POPEJ AT WESTAT DOT COM>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date: Wed, 31 Aug 2005 12:34:59 -0400 
I had the same problem and had to also deactive malformed PNG inspections.
I opened a trouble ticket with Check Point Support and they claim there is
nothing wrong with the PNG inspection.


-----Original Message-----
From: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST AT 
AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Rainer Orsario
Sent: Wednesday, August 31, 2005 12:13 PM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] AW: [FW-1] SmartDefense and Java-based webpage


hi

I had to deactivate "malformed PNG" (content inspection) to make it work, DONT 
ASK! :-/

Regards
rainer 


-- 
Rainer Orsario, Technical Services / IT-Sicherheit 
Bacher Systems EDV GmbH 

Clemens-Holzmeister-Strasse 4 
A-1100 Wien, Business Park Vienna 
phone: +43 (1) 60 126-34 | fax: +43 (1) 60 126-4 
e-mail: ro AT bacher DOT at | http://www.bacher.at 

-----Ursprüngliche Nachricht-----
Von: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST AT 
AMADEUS.US.CHECKPOINT DOT COM] Im Auftrag von cisco4ng
Gesendet: Mittwoch, 31. August 2005 04:15
An: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Betreff: Re: [FW-1] SmartDefense and Java-based webpage
Wichtigkeit: Niedrig

I've seen it before.  I had to disable http worm catcher in SmartDefense. After 
that, downloading large .jar file worked for me.  The weird thing is that you 
won't see any drops in SmatrtDefense.
 
Good luck!

Patrick Kelly <pkelly AT PCROCK DOT NET> wrote:
I have NGAI on SPLAT with HFA 15. I need to get users to a webpage that 
contains a java-based application. The application downloads large (2MB and
less) .jar files as part of a simulation and training application. tcpdump at 
the external shows the http request going from internal to the ip address of 
the website. The return traffic from the website goes to NAT address and high 
port number. The log shows that the internal client goes out to port 80 but the 
source is incremented by 1 for the entire time the application fails. The 
vendor thinks there is a problem with my ability to download the .jar files. 
However, this has not and is not a problem now or in the past. Even their test 
site checks out okay for a small .jar file. If I take an imaged client outside 
the FW, everything runs just fine.

Has anyone run into this problem? There are no log entries for a SmartDefense 
failure, reject or deny.

Thanks in advance for your interest,

Patrick Kelly

=================================================
To set vacation, Out-Of-Office, or away messages, send an email to LISTSERV AT 
amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your subscription options, email 
fw-1-owner AT ts.checkpoint DOT com 
=================================================

__________________________________________________
Do You Yahoo!?
Tired of spam?  Yahoo! Mail has the best spam protection around 
http://mail.yahoo.com 

=================================================
To set vacation, Out-Of-Office, or away messages, send an email to LISTSERV AT 
amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your subscription options, email 
fw-1-owner AT ts.checkpoint DOT com 
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com 
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [FW-1] AW: [FW-1] SmartDefense and Java-based webpage, Rainer Orsario
Next by Date:  Re: [FW-1] AW: [FW-1] SmartDefense and Java-based webpage, Bill Mathews
Previous by Thread:  [FW-1] upgrade_export command on R54, James Jones
Next by Thread:  Re: [FW-1] AW: [FW-1] SmartDefense and Java-based webpage, ravi pina
Indexes:  [Date] [Thread] [Top] [All Lists]