Courtesy of work done by Mark Mills:
: (RegMonitor
:type (plugin)
:parameters (
:string ("SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon\DefaultDomainName=YOURDOMAINHERE")
:begin_admin (admin)
:send_log (alert)
:mismatchmessage ("Your machine is not a member of the (insert your
company here) network domain and has been rejected")
:end (admin)
)
)
As kong as you only have one domain, this code will work.The only way around
it is to rename the actual computer name to that of the domain name you're
checking for.
Ray
From: Carole Berger <[EMAIL PROTECTED]>
Reply-To: Mailing list for discussion of Firewall-1
<[email protected]>
To: [email protected]
Subject: [FW-1] Secure Client verification
Date: Wed, 1 Jun 2005 10:56:07 +0200
Hello,
I need to define a remote VPN access from specific company laptop to
internal servers.
I need to be sure to be able to allow access only to specific internal
systems and to block all other internet connection during the VPN. For that
I am pretty sure the secure client should be a good think.
But I still have an open question, Is there a way to verify that the
external system asking for a VPN connection is one of the company laptop
that are allowed to access remotely.
In fact if someone install the Secure client at home on his PC and use his
token to authenticate, how can I reject this connection as it is not coming
from the trusted laptop??
Thanks for your help,
Carole
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
