[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

No Subject

To: fw-1-mailinglist@lists.us.checkpoint.com
From: jean-pierre morant <jeanpierre_morant@yahoo.com>
Date: Thu, 23 Mar 2000 07:29:33 -0800 (PST)
Reply-To: jeanpierre.morant@advalvas.be
Sender: owner-fw-1-mailinglist@lists.us.checkpoint.com


Hmmmm these 3 are all TCP, not UDP, right?

If there is a trust relationship between your (trusted) domain and the
(trusting) domain of the exchange server, you may need some extra ports
opened.

On my side I've noticed UDP packets coming from the exchange server
with a destination port that is either 4852 or 4866??   Apparently all
ports are defined fixed on the exchange server, I have no clue what
these are for. They do appear each 61 seconds, during for an hour or
so, and then nothing....


> 
> Are you Using Outlook with synchronisation? 
> If so then port 135 (EPMAP) and type other ports need to ne opened.
> 
> These 2 other ports are by default dynamically assigned. To tighten
up the
> firewall allocated portnumbers to these services (call them something
like
> MSExchangeIS an MSExchange DS)
> 
> Add the following to your exchange box
>
hkey_localmachine/system/currentcontrolset/services/msexchangeds/parameters
> DWORD - TCP/IP port - PICK A NUMBER
>
hkey_localmachine/system/currentcontrolset/services/msexchangeis/parameterss
> ystem
> DWORD - TCP/IP port - PICK A NUMBER
> 
> Then create a rule like
> 
> SecureRemote user   ---   Mailhost   ----   MSExchangeDS,MSExchageIS,
EPMAP
> ----   Client Encrypt  ----   LONG
> 
> Been a long time since I did this so you may want to check these
settings
> first
> But at least this is somewhere to start.
> 
> 
> SC
> 
> 
> 
> 
>  -----Original Message-----
> From: Lim, Simon [mailto:SLim@edisonenterprises.com] 
> Sent:23 March 2000 00:36
> To:Firewall (E-mail)
> Subject:[FW1] VPN/Securemote/Exchange server
> 
> 
> Hi all,
> 
> I'm currently implementing VPN and need to get to our Exchange server
from
> the outside using securemote client.  The VPN seems to be working
since I
> can telnet to my internal routers.  I'm using Outlook get to the
Exchange
> server but not having any luck.  Can someone give me a sample
rulebase for
> the smtp server so I can make sure mine correct?
> 
> 
> Simon
> 
> 
> 
> 
>
============================================================================
> ====
>      To unsubscribe from this mailing list, please see the
instructions at
>                http://www.checkpoint.com/services/mailing.html
>
============================================================================
> ====
> 
> 
>
=============================================================================
> ===
>      To unsubscribe from this mailing list, please see the
instructions at
>                http://www.checkpoint.com/services/mailing.html
>
=============================================================================
> ===


=====
Jean-Pierre Morant                La vie serait
jeanpierre.morant@advalvas.be     tellement plus simple
+ 32 (0)95/79 17 37               si seulement
=============================     nous avions les sources....

__________________________________________________
Do You Yahoo!?
Talk to your friends online with Yahoo! Messenger.
http://im.yahoo.com


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: Re: [FW1] Sudden increase of Ident Requests
Next by Date: RE: [FW1] Checkpoint 4.0 & ADSL ppp0e client
Prev by thread: [FW1] Re:
Next by thread: No Subject
Index(es):
- Date
- Thread