[prev in list] [next in list] [prev in thread] [next in thread]
List: gauntlet-user
Subject: [GAUNTLET-USER] Re: Gauntlet Newbie Questions
From: "Kevin Butters" <kevin () hollinet ! com>
Date: 2000-11-30 17:11:34
[Download RAW message or body]
Q1. Simple enable POP3 and SMTP proxies and place them in trusted policy. If
users have their workstations with default gateways back to firewall, and
Transparency is on, the operation is seamless. Users can set local SMTP and
POP3 in Internet emailer to external servers.
Q2. No need to use NAT for proxied traffic. The source address is changed
to the source IP of the firewall after is passes through the proxy.
This is contrast to firewalls like Checkpoint and SonicWall that require
NATing for outbound connections.
Q3. Plug is for TCP ports. Packets screens are used for UDP and when using
NAT. Pay attention to the actions of the packet screens
Absorb:
Absorbed to open proxy
Forward with Reply:
Retains source address of primary IP on firewall. Needs to be on
oneinterface traffic will be received on. Not used with NAT
Forward without Reply:
Retains source address of orignator. Used with NAT. Should be configured on
each interace.
Kevin
----- Original Message -----
From: "Wilson, Steve" <swilson@grci.com>
To: "Multiple recipients of list" <gauntlet-user@mail.rmsbus.com>
Sent: Wednesday, November 29, 2000 6:32 AM
Subject: [GAUNTLET-USER] Gauntlet Newbie Questions
> Hello,
>
> Got a couple of questions regarding Gauntlet 5.5 on NT. I am using NAT
> for Internal addresses.
>
> 1. I want to allow internal users to connect to external email
> servers (both SMTP and POP3). What are the steps required to do this?
>
> 2. When outbound traffic uses a proxy such as the HTTP proxy, there
> is no entry in the NAT table. This makes sense but just wanted to confirm
> this is normal.
>
> 3. Can someone tell me the differences between a plug proxy and a
> packet screen and when to use them.
>
> Thanks,
> Steve Wilson
> swilson@grci.com
>
>
>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic