Critical Problem With Checkpoint

[doccocaubai]

I have nokia IP390 firewall running IPSO 4.2 b069 and checkpoint NGX R65. Althought I set the policy permit any any but I can't access any http web (port 80). But I can access the web with https protocol.
Please help me how to fix it.

[RayPesek]

Please post the SmartView Tracker log entry when you try to access an HTTP site and also the log entry when you access an HTTPS site.

Ray

[doccocaubai]

i checked the smartview tracker but there is nothing about http.
please help me.

[RayPesek]

Is there any log entry at all? Try filtering on just the source IP you're using for the HTTP connection.

Do you have logging enabled on all rules? Do you have a Cleanup rule at the very bottom of the rulebase?

Source: any
Destination: any
Service: any
Action: Drop


Make sure it's set to Log. If not, add it and try again. Check Point has this rule built in but it doesn't log anything. That's why you need to add it yourself.

Ray

[desperado618]

Is your http rule set to log? Try fw monitor from the command line. Also try tcpdump on the ingress interface to confirm that the packets are reaching the firewall. If you ahve a large rulebase, ass a temporary rule to all your traffic at the very top of the rulebase. If your access then works, you need to locate the rule below that , this is not set to log, that is blocking your traffic.

Netleets.com IT Security news
IT Security news and information.