Firewall Wizards mailing list archives
RE: Blocking outbound FTP on FW-1
From: Daniel Howe <dhowe () cirsa com>
Date: Mon, 9 Oct 2000 14:51:57 +0200
I understand the creating the resource object for FTP and the rule part. My problem is how to configure properly the resource to do it. Here is the rule I have Origin Destination Service Action mybox Any FTP->res-ftp Drop or Accept (same response) FTP->res-ftp has Path * and PUT checked. I do not have a CVP server. trying to ftp from mybox I get the following: $ ftp ftp.debian.org Connected to ftp.debian.org. 220 aftpd: Check Point FireWall-1 Secure FTP server running on firewall Name (ftp.debian.org:buddy): ftp 331 aftpd (not authenticated): Enter server password, or for anonymous login use your complete e-mail addr Password: 413 aftpd: Connection to 216.66.54.50 failed Login failed. 421 Service not available, remote server has closed connection ftp> $ I get same response with Action = Accept or Drop. What am I missing? Thanks, Daniel. -----Mensaje original----- De: Jerald.Josephs () nokia com [mailto:Jerald.Josephs () nokia com] Enviado el: sabado 7 de octubre de 2000 1:54 Para: daniel_howe%DESAR () cirsa com; Firewall-wizards () nfr net Asunto: RE: [fw-wiz] Blocking outbound FTP on FW-1 You create a resource object for FTP, configure it properly and use it in a rule where the source is your Intranet and the destination is NOT your Intranet. Jerald.Josephs () nokia com Regional Technical Manager - Sales Engineering North America West Nokia Internet Communications
-----Original Message----- From: Daniel Howe [mailto:dhowe () cirsa com] Sent: Thursday, October 05, 2000 9:05 AM To: 'Firewall-wizards () nfr net' Subject: [fw-wiz] Blocking outbound FTP on FW-1 Hi, Is there anyway in FW-1 to block outgoing FTP for PUT commands only? Many thanks, Daniel. _______________________________________________ firewall-wizards mailing list firewall-wizards () nfr net http://www.nfr.net/mailman/listinfo/firewall-wizards
_______________________________________________ firewall-wizards mailing list firewall-wizards () nfr net http://www.nfr.net/mailman/listinfo/firewall-wizards
Current thread:
- Blocking outbound FTP on FW-1 Daniel Howe (Oct 05)
- <Possible follow-ups>
- RE: Blocking outbound FTP on FW-1 Daniel Howe (Oct 09)
- RE: Blocking outbound FTP on FW-1 Jerald . Josephs (Oct 09)