 | ||
 Block GoToMyPC in Monitor Only mode - not tracking/logging | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2007-06-29 | |||
| |||
 Block GoToMyPC in Monitor Only mode - not tracking/logging We're running R62. I set "Block GoToMyPC" to Active and checked Monitor Only mode. In SmartView Tracker I see "accept" entries. I expect the traffic to be allowed since I have monitor mode on, but shouldn't I see something in the Attack Name, Attack Info, or other columns to signify that SmartDefense "sees" the sessions and would block them if monitor only wasn't checked?  |
| 2007-06-29 | |||
| |||
| Re: Block GoToMyPC in Monitor Only mode - not tracking/logging I think it should actually show up in your logs as "M" (Smart Defense Monitor only) instead of accept. You can set this as a filter on the action column of tracker. I am assuming that when you turned on monitor for this, you told it to log. __________________ There's no place like 127.0.0.1 |
| 2007-06-29 | |||
| |||
| Re: Block GoToMyPC in Monitor Only mode - not tracking/logging SmartDefense settings for Block GoToMyPC: Mode: Active is selected Action: Monitor Only - no protection is checked Track - Log is selected In the SmartView Tracker, the entries in the log show Accept in the action column, nothing in the Attack Name or Attack Info columns, and "service_id: GoToMyPC" in the information column. Might this be a bug or am I doing something wrong? Is there some other setting that must also be turned on? |
| 2007-07-02 | |||
| |||
| Re: Block GoToMyPC in Monitor Only mode - not tracking/logging In pre-R65 versions it is known that in some cases 'Monitor only' will not just monitor the selected action. This is a known bug of SmartDefense. Upgrade to NGX (R65) or set to Allow. Best regards, Danny Trommer CCSA/CCSE/CCSE+ |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
