- Products
- Learn
- Local User Groups
- Partners
- More
CheckMates Fifth Birthday
Celebrate with Us!
days
hours
minutes
seconds
Join the CHECKMATES Everywhere Competition
Submit your picture to win!
Check Point Proactive support
Free trial available for 90 Days!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
The 2022 MITRE Engenuity ATT&CK®
Evaluations Results Are In!
Now Available: SmartAwareness Security Training
Training Built to Educate and Engage
MITRE ATT&CK
Inside Check Point products!
CheckFlix!
All Videos In One Space
Hello Guys,
One of our vulnerability scanner gave the following ports as vulnerable, so we want those ports to be blocked from outside and to be allowed from the inside for inside communications.
These are the ports
264/tcp - fw1_generic.
500/udp - ikev1.
18231/tcp
18264/tcp - cp_ica
how can i do this?
Thanks
Some of these are covered by implied rules.
To confirm this, go to Global Properties, click the appropriate checkbox, and install policy.
You will see log entries on Rule 0.
In which case you will have to work to disable the implied rules, but this is NOT recommended.
I feel like I might be missing something with your question, but I think there are several ways to achieve this...
SRC: Internal Networks Group [NEGATED] | DST: Any | SVC: ports | ACT: drop
--or--
SRC: Internal Networks Group | DST: Any | SVC: ports | ACT: allow
* I'd have several more specific rules of the above rule with explicit destinations...
SRC: Any | DST: Any | SVC: ports | ACT: drop
--or--
Other combinations...
Hi Brian,
Thank You for the reply.
Regards,
Shehan
Some of these are covered by implied rules.
To confirm this, go to Global Properties, click the appropriate checkbox, and install policy.
You will see log entries on Rule 0.
In which case you will have to work to disable the implied rules, but this is NOT recommended.
Hi Dameon,
Thanks for the reply. I have disabled some with the implied rules.
Regards,
Shehan
G reat answer PhoneBoy, how to do this for 600 and 1100? thc
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY