 | ||
 URI resource rules not working and tearing my hair out | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2006-02-20 | |||
| |||
 URI resource rules not working and tearing my hair out PLEASE PLEASE PLEASE PLEASE HELP ME ON THIS ISSUE - This IS NG/AI R55 I have the following rules in place noting else Rule SRC DST SRV ACTION 1. Internal_net ANY HTTP Resource Reject 2. Internal_net ANY HTTP Accept 3. ANY ANY ANY Drop I have tried a URI resource using both wildcards and file types - now moving onto UFP I cannot get any of them to work in the above scenario I have configured the file type method as follows www.amazon.co.uk<tab><tab>1<RTN> etc etc I have configured the Wildcard as simple as this on the match tab i have EVERYTHING selected & host, path and query as default[*] on the action tab i have a replacement URL - i have even tried the weeding options and nothing works - it only works when i allow rule 1 I have DNS installed on the firewall and its a windows 2003 server [i know but its a lab] What am i missing? it just wont plain work! :( Much Thanks for any info ! Last edited by philofish; 2006-02-20 at 09:13. Reason: more info  |
| 2006-02-27 | |||
| |||
| Re: URI resource rules not working and tearing my hair out bear in mind that firewall-1 is a firewall, any other bells and whistles should be seen as a bonus. if you need full content filtering you should consider something dedicated for this (bluecoat, clearswift etc..) i've played about with URI's quite a bit and the only way i've got it to work was with simple urls specified using a file. there's a thread here somewhere about what needs to be in the file to make it work. (but don't get your hopes up, its pretty basic and unless you specifiy a custom 'access denied' screen it's pretty ugly too :P) |
| 2006-02-27 | |||
| |||
| Re: URI resource rules not working and tearing my hair out Find out checkpoint courseware and configure case from the hands on tasks. This is definitely working. Do you see detail URL's in the log? The hand on must be just before this chapter (if I'm not wrong). http://www.checkpoint.com/services/e...ngx_sample.pdf |
| 2006-03-01 | |||
| |||
| Re: URI resource rules not working and tearing my hair out It may be helpful if you explain what is happening. You mention that it doesn't work but you don't go into specifics. 'Not working' is pretty vague and to help you out with this we will need what is happening when it isn't working. |
| 2006-03-10 | |||
| |||
| Re: URI resource rules not working and tearing my hair out Just started Playing with this myself and found the same symptom.Looks like in my case that the objects that are applied to this rule Bypass the hide nat but haven't figured out why yet |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
