Hi Marc, Sure! -----��l�l��----- �H���: Heinzmann, Marc <[EMAIL PROTECTED]> �����: Peter <[EMAIL PROTECTED]> ���: 1999�~2��11�� PM 05:00 �D��: RE: Gauntlet Firewall http proxy problem >Peter, > >have you tried to set the destination restrictions >from the "Destinations" menu in the GUI? > >Marc > >> -----Original Message----- >> From: Peter [mailto:[EMAIL PROTECTED]] >> Sent: Thursday, February 11, 1999 5:37 AM >> To: william.wells >> Cc: [EMAIL PROTECTED] >> Subject: Re: Gauntlet Firewall http proxy problem >> >> >> Dear William, >> >> Actually, I have set destination restrictions in the >> netperm-table for all >> users. Apparently, it works but if some users set http proxy >> option at >> browsers in IE or Netscape as firewall internal IP >> address:80, then all web >> pages can access regardless our http restriction. >> >> Do you know what I mean & can you help me >> >> Peter >> >> -----��l�l��----- >> �H���: william.wells <[EMAIL PROTECTED]> >> �����: 'Peter' <[EMAIL PROTECTED]> >> ���: 1999�~2��11�� PM 12:07 >> �D��: RE: Gauntlet Firewall http proxy problem >> >> >> >This question is probably unrelated to your question. Are you setting >> >restrictions based on the destination or source? We'd like >> to block ActiveX >> >for all destinations other than Microsoft. >> > >> >As for your question, I'm not sure what you mean by Level 3. >> I've done a >> >fair amount of configuration of the netperm-table so I might >> be able to >> help >> >if no one else responds. I'd need to know the applicable >> rules though. >> > >> >> -----Original Message----- >> >> From: Peter [SMTP:[EMAIL PROTECTED]] >> >> Sent: Wednesday, February 10, 1999 7:41 PM >> >> To: [EMAIL PROTECTED] >> >> Subject: Gauntlet Firewall http proxy problem >> >> >> >> We have installed Gauntlet Version 4.1 on Solaris machine & we use >> >> netacl-http instead of http. We have set HTTP restriction >> to particulars >> >> hosts by denying some Level 3 destination at >> netperm-table. Apparently, >> >> it >> >> works but if user set http proxy option at browsers as >> firewall internal >> >> IP >> >> address:80 (port 80), then all web pages can access >> regardless our http >> >> restriction. >> >> >> >> Does anyone can help me? >> >> >> >> Peter >> >> >> >> >> >> - >> >> [To unsubscribe, send mail to [EMAIL PROTECTED] with >> >> "unsubscribe firewalls" in the body of the message.] >> >> >> - >> [To unsubscribe, send mail to [EMAIL PROTECTED] with >> "unsubscribe firewalls" in the body of the message.] >> - [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
