In order to disable the firewall module from checking the CONNECT command in HTTP traffic on Nokia IP Series Appliances, proceed with the following:
On any machine with a browser (ie. Internet Explorer) 1. Download and extract the modzap.gz from the following Secure Knowledge solution: skI4038 How to get the MODZAP utility 2. Transfer the modzap.gz file to the Nokia IP Series Appliance (ie. ftp transfer, please make sure the ftp transfer is done in binary mode) On the Nokia IP Series Appliance 3. Extract the modzap.gz file using the following command syntax: gzip -d modzap.gz 4. Issue the following command in order to allow execution permission for the modzap utility: chmod 744 modzap 5. Issue the following command (please make sure the command is issued in the same directory that the modzap utility exists): modzap _asm_http_allow_connect $FWDIR/boot/modules/fwmod.o 0x1 The Main Point here is that you should see the Value changing from 0000000X000000 into 0000000X0000001. Also remember to reboot the Firewalls. "Verweyen, Dirk" <[EMAIL PROTECTED]> wrote:Hi, we trying to connect to Citrix MetaFrame via HTTP/HTTPS. This is rejected by our FW-1 with the Information CONNECT command found in HTTP request. How can i configure FW-1 to get a connection? Any ideas? Dirk ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= --------------------------------- Do you Yahoo!? Vote for the stars of Yahoo!'s next ad campaign! ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
