Thread: Implied rule dropping snmp-read
View Single Post
  #1 (permalink)  
Old 2005-12-13
BarryG BarryG is offline
Junior Member
  
Join Date: 2005-12-13
Posts: 2
Rep Power: 0
BarryG has an average reputation (10+)
Default Implied rule dropping snmp-read
CheckPoint Firewall-1 NG-AI R55 Hotfix 6 on Nokia IP 380 running IPSO 3.8

SmartCenter Server NG-AI R55 Hotfix 16 on Windows 2000 Server

Problem:

Number: 56396
Date: 13Dec2005
Time: 11:12:15
Product: VPN-1 & FireWall-1
Interface: eth-s1p1c0
Origin: fwne12 (10.31.16.137)
Type: Log
Action: Drop
Protocol: udp
Service: snmp-read (161)
Source: Server_1 (10.31.16.156)
Destination: Server_2 (10.31.124.101)
Rule: 0 - Implied Rules
Source Port: 2190


There is an explicit security rule that allows Server_1 (Windows 2000 Server) to make snmp-read connections to Server_2 (Windows 2000 Server) but it is dropped by the implied rule.

Any ideas why ?
Reply With Quote