This may sound somewhat basic but what sort of logging did you specify for those rules? I usually use Long logging to get the most info possible.
opiesan
>From: "Yaniv Fine" <[EMAIL PROTECTED]>
>Reply-To: <[EMAIL PROTECTED]>
>To: "Firewalls-Owner" <[EMAIL PROTECTED]>
>Subject: VPN & Encryption domain
>Date: Tue, 28 Nov 2000 13:03:39 +0200
>MIME-Version: 1.0
>Received: from [209.182.195.137] by hotmail.com (3.2) with ESMTP id MHotMailBBECDE180035D820F3D9D1B6C38904570; Tue Nov 28 03:12:24 2000
>Received: (qmail 3640 invoked by uid 15); 28 Nov 2000 11:07:27 -0000
>Received: from diana.inter.net.il (diana.inter.net.il [192.114.186.19])by spike.rwc.gnac.net (8.8.8/8.8.8) with ESMTP id DAA03631for <[EMAIL PROTECTED]>; Tue, 28 Nov 2000 03:07:21 -0800 (PST)
>Received: from YANIVF2000 ([213.8.67.178])by diana.inter.net.il (Mirapoint)with SMTP id AEY48132;Tue, 28 Nov 2000 13:07:18 +0200 (IST)
>From [EMAIL PROTECTED] Tue Nov 28 03:12:38 2000
>Delivered-To: [EMAIL PROTECTED]
>Message-ID: <[EMAIL PROTECTED]>
>X-Priority: 1 (Highest)
>X-MSMail-Priority: High
>X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2910.0)
>Importance: High
>X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400
>Sender: [EMAIL PROTECTED]
>Precedence: bulk
>X-Loop: [EMAIL PROTECTED]
>
>Hi all
>
>I have a strange error in my(check point 4.1) Fw log file
>I add the dmz network object to my encryption domain group in order to give
>access to remote clients using secure remote access to restricted web site
>with access write only to mobile users
>But when I look at my log file I see that packets are drop with no rule
>related to this even not rule 0, so I cannot troubleshoot this.
>I also add another error similar error, I tried setting up proxy server in
>the DMZ on default port 80 servers from DMZ add successfully made queries to
>proxy server but computers from my internal network could make queries to
>the Proxy server and the same scenario accrued in the log file, packets were
>dropt but no rule was related to that even not rule 0.
>These 2 scenarios accrued even if I made an explicit rule allowing queries
>on port 80 from internal network to DMZ or proxy server or mobile users web
>server.
>Is this error indicating that I have a bug in the Fw or this is just an
>option in policy properties that I need to enable or disable?
>
>Any pointers will be most appreciated
>
>
>
>
>
>~~~~~~~~~~~~~~~~~~~
>Yaniv Fine
>MIS
>Know-Net Group
>Work -972-9-9566960
>Fax -972-9-9566965
>Cell -972-54-449987
>~~~~~~~~~~~~~~~~~~~
>
>
>
>-
>[To unsubscribe, send mail to [EMAIL PROTECTED] with
>"unsubscribe firewalls" in the body of the message.]
Get more from the Web. FREE MSN Explorer download : http://explorer.msn.com
- [To unsubscribe, send mail to [EMAIL PROTECTED] with "unsubscribe firewalls" in the body of the message.]
