We had a problem with gauntlet 5.0 (Solaris, no transparency) where
active FTP users from behind Checkpoint firewalls, ftping through our
Gauntlet firewall were having trouble with the data portion of
commands. In particular, checkpoint didn't like that gauntlet used
anonymous ports for the data sockets instead of port 20. Looking
through the manual, there's a way to change this -- but are there
security implications? Why was it set differently to begin with? I
called Gauntlet tech support, and so far, they can't tell me why
Gauntlet defaults this way.
[I know that there are problems with blanket rules allowing port 20
through, but I would think that wouldn't be an issue here.]
--
Mordechai T. Abzug
[EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED]
Linux red-sonja 2.4.0-test9-morty2 #4 Mon Oct 9 03:16:59 EDT 2000 i686 unknown
"I believe OS/2...to be the most important OS...of all time" Gates '87
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
