Why not just create a Network or address range object, or individual workstation
objects and tidy them up into a group. The define a rule with source/dest being
that group or network object?
Rules in FW-1 are not interface specific.
As far as I can tell, unless there is some inspect code to do this, there is no
way to create a rule that specifies something like "anything off this one interface".
It's really just based on the SourceAddress or DestAddress of the packets arriving
or leaving the firewall to best of my knowledge.
-----Original Message-----
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of
[EMAIL PROTECTED]
Sent: Monday, November 20, 2000 5:36 PM
To: [EMAIL PROTECTED]
Subject: [FW1] Multiple IP's on One Server
I have a single server in my DMZ that has multiple 'virtual servers' on it,
each with it's own IP Address (about 100 of them). Does anyone know if
there's any way to add a rule for the 'interface' rather than having to add
100 rules, one for each IP?
Thanks,
Bryan J. Dolnik
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
