 | ||
 Problem on 4.1 (don't ask) | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2006-02-01 | |||
| |||
 Problem on 4.1 (don't ask about 4.1...long story) Hi All I need some assistance please. I have a rule, say 124, that has an any | negated network object | any | service ports(SP) | drop | log I've inserted a rule above this to allow traffic on (SP), but it is not allowing the traffic. My understanding is that if the network object is negated, that it defaults to an any any rule. Other than disabling the rule 124 and then testing, what is your take on this? Rgrds b Last edited by bvanniekerk; 2006-02-01 at 08:00. Reason: Clarity  |
| 2006-02-02 | |||
| |||
| Re: Problem on 4.1 (don't ask about 4.1...long story) Quote:
the negate rule is what it says on the tin. the rule any | negated network object | any | service ports(SP) | drop | log would make sure that everything accessing the service ports on any machine except the negate object will be dropped. i'm not entirely sure what you are trying to do. if you could elaborate some more maybe we could help |
| 2006-02-06 | |||
| |||
| Re: Problem on 4.1 (don't ask) Hi this is something my predecesors have put together. I've gotten to the point where I've added the machines that I want to be able to access the ports, to the negated list, which makes sense. It is however still dropping the packets like flies. I'm trying to allow servers access to the tcp ports that are currently dropped. The thinking was that if I add the Network objects to the negated object (which would negate them as well), that the rule would then allow the packets to go through. Still vague? rgrds b |
| 2006-02-07 | |||
| |||
| Re: Problem on 4.1 (don't ask) Hi All The problem was all my own. Apologies for wasting your time. Rgrds b |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
