Hi All
I was going through available services in FW-1 . it has DCE RPC etc.
I am trying to make a stand alone NT server ( in the DMZ) as member server
of a domain which is behind a Firewall ( FW-1)...
now I don want to use TCP/IP for this I want to use NetBEUI only...but FW-1
allows rules
M$ admin stuff should all be udp 137,8,9.
However, Try applying the list on the inside interface (still) but using
outgoing_dest instead of outgoing_src, then add this line somewhere:
outbound 101 except dmz.ip.range dmz.net.mask 0
I think that should then block access to all hosts except for
On Wed, 19 Jul 2000, Gary Maltzen wrote:
IPCHAINS = MASQ : check Rusty's MASQ site
as with ipfwadm it -=camn=- equal masq, and most often for small home
networks and above does, but does not -=have to=-, unless there's
something I've missed in documentation and I made majic that has
Gary Maltzen wrote:
Could anyone guide me to source of information, website, or otherwise to
help me with this.
IPCHAINS = MASQ : check Rusty's MASQ site
http://www.indyramp.com/masq/
You DID read the IPCHAINS-HOWTO, right?
http://www.linuxdoc.org/HOWTO/IPCHAINS-HOWTO.html
works except the router won't respond to the PIXs ARP request for
192.168.1.1. I doubt the network group will make the adjustment.
You can fill the arp cache yourself:
arp outside 192.168.1.1 00d0..
this is what I missed - thanks
anybody else try installing a firewall with
Hi all
I am using Checkpoint FW 1
How do I make a rule to allow ICMP Destination Unreachable subtype
"Fragmention Needed # 4" to go thr'.
Checkpoint does not seem to let me specify subtypes.
Thanks
ameet
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the
Hi,
I am using Checkpoint FW 1
How do I make a rule to allow ICMP Destination Unreachable subtype
"Fragmention Needed # 4" to go thr'.
Checkpoint does not seem to let me specify subtypes.
If you go to the Services Manager in the GUI and select ICMP - you will
see the subtypes predefined by
Date: Wed, 19 Jul 2000 13:58:32 -0500
From: "Gary Maltzen" [EMAIL PROTECTED]
Subject: denying tcp/0
I keep seeing (and denying) tcp packets with both source and
destination
port zero; can somebody tell me what purpose these serve?
Gary,
tcp port 0 on a Cisco router is a bug. If you
Terry Lee Moore wrote:
Date: Wed, 19 Jul 2000 13:58:32 -0500
From: "Gary Maltzen" [EMAIL PROTECTED]
Subject: denying tcp/0
I keep seeing (and denying) tcp packets with both source and
destination
port zero; can somebody tell me what purpose these serve?
Gary,
tcp port 0 on
netcomm wrote:
Hi All
I was going through available services in FW-1 . it has DCE RPC etc.
I am trying to make a stand alone NT server ( in the DMZ) as member server
of a domain which is behind a Firewall ( FW-1)...
now I don want to use TCP/IP for this I want to use NetBEUI
10 matches
Mail list logo