Ray wrote:
Yeah, I do. We don't run a lot of SSL to sites internally because we
have the public sites hosted elsewhere, so it's mainly employee-only and
partner-only systems I would need to protect. In our case, it's light
traffic and I would like SmartDefense to be able to see it. If I wanted
a blind firewall, I would have bought a Pix. :-)
And after you would be able to feed the clear HTTP traffic to
SmartDefense you'll start cursing and disabling by hand almost all the
web intelligence protections to get your applications working because
Check Point has a funny way of interpreting how elligible stuff look
like on the internet.
But as always this boils down to: how much money I loose if I leave this
smart defense check open and make my site unavailable to X customers.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
