[Date Prev][Date Next][Thread Prev][Thread Next][Thread Index]

Re: [fw1-gurus] Checkpoint NGX (R65) IPSO 4.2

Subject: Re: [fw1-gurus] Checkpoint NGX (R65) IPSO 4.2
From: "Robert Hughes" <rob@xxxxxxxxxxxxx>
To: "Perkins, Julie" <jperkins@xxxxxxxxx>, fw1-gurus@xxxxxxxxxxxxxxxxxx
Date: Wed, 04 Feb 2009 04:03:49 +0000

You can set up manual auth rules so that traffic going to certain servers will be authenticated by the firewall. Check the firewall admin guide. I think all the examples show traffic going outbound, but there's no reason you can't just reverse that for inbound traffic. I've seen a few customers do it, but it's kind of uncommon, but does work.

As far as performance, yes, there can be a fair impact on the firewall depending on how many connections you need to support.

-----Original Message-----
From: Perkins, Julie [mailto:jperkins@xxxxxxxxx]
Sent: Tuesday, February 3, 2009 12:18 PM
To: fw1-gurus@xxxxxxxxxxxxxxxxxx
Subject: [fw1-gurus] Checkpoint NGX (R65) IPSO 4.2

Hello All ? I am being asked by my applications team to setup reverse proxy on my Checkpoint so they don?t have to buy MS ISA. I have read it can be done, my question is should it be done? Are there performance issues to consider?

Any insight appreciated.

Best regards,

Julie Perkins

_______________________________________________
fw1-gurus mailing list
fw1-gurus@xxxxxxxxxxxxxxxxxx
http://lists.phoneboy.com/listinfo.cgi/fw1-gurus-phoneboy.com

Prev by Date: Re: [fw1-gurus] CP Management High Availability
Next by Date: Re: [fw1-gurus] FW: Backup and Restore in WebUI does not work, HELP!!
Previous by thread: Re: [fw1-gurus] Checkpoint NGX (R65) IPSO 4.2
Next by thread: Re: [fw1-gurus] Checkpoint NGX (R65) IPSO 4.2
Index(es):
- Date
- Thread