Question:
My firewall had never had a stealth rule (I inherited it). I posted the other day
about where I should put it considering I had a VPN in place, and it was decided that
it should go under the authentication rules. Done.
Since doing so, my logs are showing that my LDAP server communication is being dropped
(source: LDAP server, dest: firewall, service: ldap-ssl, drop: stealth rule).
I assume that I need to implicity allow communication from my LDAP server to the
firewall before the stealth rule. Is there any danger in doing this, or should I
remove my stealth rule and let my cleanup rule handle all drops?
Any help is appreciated.
Rodney Lacroix
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
