This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Packet Filter issue

Can i setting up Packet Filter like this to just let Ftp and FTP-CONTROL allow access from internet site.
  1  { Private Networks - RFC1918 } Any Internet Allow
  2  Internet Any { Private Networks - RFC1918 } Deny
  3  Internet FTP { Private Networks - RFC1918 } Allow
  4  Internet FTP-CONTROL { Private Networks - RFC1918 } Allow
[:S]

BTW:why ASL can not be a SMTP Server not only smtp gateway.cause i does not have enought computer to be a server.

This thread was automatically locked due to age.

Parents

0 ClausP over 23 years ago

Hi,

i think that this is not possible because first rule matches stops continus checking.

>2 Internet Any { Private Networks - RFC1918 } Deny

Permit rules for the distination { Private Networks - RFC1918 } must be defined before this rule !

try this version:

1 { Private Networks - RFC1918 } Any Internet Allow
2 Internet FTP { Private Networks - RFC1918 } Allow
3 Internet FTP-CONTROL { Private Networks - RFC1918 } Allow
4 Internet Any { Private Networks - RFC1918 } Deny

claus
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 ClausP over 23 years ago

Hi,

i think that this is not possible because first rule matches stops continus checking.

>2 Internet Any { Private Networks - RFC1918 } Deny

Permit rules for the distination { Private Networks - RFC1918 } must be defined before this rule !

try this version:

1 { Private Networks - RFC1918 } Any Internet Allow
2 Internet FTP { Private Networks - RFC1918 } Allow
3 Internet FTP-CONTROL { Private Networks - RFC1918 } Allow
4 Internet Any { Private Networks - RFC1918 } Deny

claus
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data