'Re: [FW-1] Websphere MQ Series communication'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       firewall-1
Subject:    Re: [FW-1] Websphere MQ Series communication
From:       "Siddhartha Jain(IT)" <SiddharthaJ () BANKMUSCAT ! COM>
Date:       2003-05-31 6:52:09
[Download RAW message or body]

Tested this out. The return traffic is treated as "stateful".

Still waiting to find out if the initiating port can be fixed.

Siddhartha


-----Original Message-----
From: Siddhartha Jain(IT) [mailto:SiddharthaJ@BANKMUSCAT.COM]
Sent: Thursday, May 29, 2003 4:50 PM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] Websphere MQ Series communication


Hello,

We are trying to identify the ports used between DB2(MQ Component)and
Websphere. I'm not clear on the documentation provided by support pack MA86
(MQSeries and Firewall). It states that the receiver channel responds to the
request from the sender channel by "initiating" a new conversation (i.e.
calls back) using local port 1414 to the senders channel's randomly selected
port which implies that normal sender/receiver channels go through this
process. It also states you need a rule that will allow a conversation to be
"initiated" from inside the firewall using port 1414 to any outside port
greater than 1023 at host x.x.x.101. Is this rule needed for sender/receiver
channels on checkpoint or do I need to specify only one rule that is "from
>1023 to 1414" and the return traffic will be treated as stateful?

Can I fix the requesting port also on the initiating side?


TIA,

Siddhartha









"This email message is intended for the named recipient only. It may be
privileged and/or confidential. If you are not the intended named recipient
of this email then you should not copy it or use it for any purpose, nor
disclose its contents to any other person which is strictly prohibited and
unlawful"

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV@amadeus.us.checkpoint.com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner@ts.checkpoint.com
=================================================

"This email message is intended for the named recipient only. It may be
privileged and/or confidential. If you are not the intended named recipient
of this email then you should not copy it or use it for any purpose, nor
disclose its contents to any other person which is strictly prohibited and unlawful"

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV@amadeus.us.checkpoint.com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner@ts.checkpoint.com
=================================================
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic