You would have to create explicit rules or you will loose mangement capabilities if this were disabled. It is more secure to disable it, but I believe that would be ultra paranoid.
If you view your implicit rules you can see what it really adds to it. By default it is enabled. Christian Chiaverini -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Garner, Annette K **BETH Sent: Friday, July 07, 2006 11:58 AM To: [email protected] Subject: [FW-1] FIREWALL SETTING What is the normal setup for the firewall in "Accept Firewall-1 control connections". Is it better to have this enabled or disabled. I am getting audited and just want to see what is the best practice. Thanks ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.394 / Virus Database: 268.9.9/382 - Release Date: 7/4/2006 ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
