Sure. But that may be harder to read as your rulebase
grows(if it will). Another way is to just allow your proxy
to go out and let your cleanup rule drop all others.
Robert
- -
Robert P. MacDonald, Network Engineer
e-Business Infrastructure
G o r d o n F o o d S e r v i c e
Voice: +1.616.261.7987 email: [EMAIL PROTECTED]
>>> Rajesh Bandar <[EMAIL PROTECTED]> 7/25/00 9:34:17 PM >>>
>
>Hi,
>
>I have a checkpoint firewall running on a solaris machine and I have a squid
>proxy runing on another sun box. I want to reject all http connections if the
>source IP is not coming through proxy. How can I do that?
>
>I tried this
>
>Any - proxy(Negate) - http - reject
>
>but it didn't work...
>
>Thanks,
>Rajesh.
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
