Home page logo

basics logo Security Basics mailing list archives

RE: Checkpoint Firewall denying Explicit SSL
From: "TVB NOC" <tvbnoc () temeculavalleybank com>
Date: Fri, 7 Dec 2007 14:25:32 -0800

If I remember correctly, when I used to have these kinds of issues, I
would create an object for the device or server in question, and
associate the object to the services I would need to allow for

Try that, this will hopefully bypass the security in smart defense...
Also, when you filter in your logs to that IP address of the server, do
you see smartdefense blocking or any other denies in tracker??? (I
should have asked you that first)

-----Original Message-----
From: Rob Thompson [mailto:my.security.lists () gmail com] 
Sent: Friday, December 07, 2007 1:45 PM
Cc: <
Subject: Re: Checkpoint Firewall denying Explicit SSL

On Dec 7, 2007 12:56 PM, TVB NOC <tvbnoc () temeculavalleybank com> wrote:
Check your smart defense settings, not sure exactly the area, but
somewhere in your settings I believe you will find FTP and SSL related

We have gone though that.  We did find an article that discussed
setting the rule to "FTP_BASIC", though that didn't seem to help
either.  The recommendation to set that came from Checkpoint
themselves, in regard to the error that we are receiving back from the

There is another area too, but I can not remember without looking at
dashboard... Sorry!!!

Nothing to be sorry about.  Your comments are very much appreciated.  :)

I will also see if I can locate your article too...

I would appreciate it.  Thank you kindly.  My efforts have come to be
rather fruitless...

We're actually down to the point that we are seriously considering
calling Checkpoint...  :(


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]