RE: Firewall and Mcafee Webshiled e250

["Cherian M. Palayoor" <cpalayoor () cwalkergroup com>]

Azman,

We had the same problem while setting up the E250 on our network.

here is a checklist of what you should look out for......

Make sure the E250 has all the routes configured properly...ie default route
pointing to the Linux firewall.

You have 2 options in configuring the E250, well actually 3. You can
configure it either as a Transaprent router or bridge, depending on how many
interfaces you have on the E250. If you have 2 interfaces, configure it as a
Transparent router. Will make your life easier.

Test connectivity to both these interfaces from the LAN and the Linux
firewall. If these work, disable all scanning and then try to send traffic
across the E250. If they dont, you have a routing issue. 

Remember to restart your E250 after the changes. 

Hope this helps.

Regards

C P

-----Original Message-----
From: Azman Jantan [mailto:azmanjantan () gmi edu my]
Sent: Thursday, June 26, 2003 6:06 PM
To: security-basics () securityfocus com
Subject: Firewall and Mcafee Webshiled e250


Need some help. I've got a problem in connecting our
local LAN to the internet. Our connection is like this.


LAN--> MCAFEE Webshield e250 --> LINUX FIREWALL --> CISCO ROUTER 2600
-->INTERNET

When i removed the MCAFEE Webshield e250 from above.

LAN --> LINUX FIREWALL --> CISCO ROUTER 2600 --> INTERNET

we can browse the internet. The problem occur when we put the mcafee
websheild e250 in the above diagram..


could you please help..URGENT..



-- 
Mr Azman Jantan
Technical Training Officer
Department of Industrial Electronics
German Malaysian Institute
No 119, Jalan 7/91 Taman Shamelin Perkasa,
3½ Miles, 56100 Cheras,
Kuala Lumpur, Malaysia.
Tel: (+603) 9286 1706
Fax: (+603) 9286 1707
HP : (+6012) 386 0309



---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.
     
Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.
          
Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------




---------------------------------------------------------------------------
Evaluating SSL VPNs' Consider NEOTERIS, chosen as leader by top analysts!
The Gartner Group just put Neoteris in the top of its Magic Quadrant,
while InStat has confirmed Neoteris as the leader in marketshare.

Find out why, and see how you can get plug-n-play secure remote access in
about an hour, with no client, server changes, or ongoing maintenance.

Visit us at: http://www.neoteris.com/promos/sf-6-9.htm
----------------------------------------------------------------------------