Installing the client on the security appliance consists of copying a client image to the security appliance and identifying the file to the security appliance as a client image. With multiple clients, you must also assign the order in which the security appliance loads the clients to the remote PC. Note The AnyConnect client configuration [...]

When trying to browse the Internet, end users may receive the above error(s): NOTE The following recommendations, as with any changes to the firewall, should be made at the discretion of the Firewall Administrator or Check Point Technical Support.   To resolve this you may need to increase the buffer size of the firewall’s HTTP Security Server. Here are [...]

If you have enabled caching on your Cisco security appliance, check URL cache statistics by entering the following command. sh url-cache stats The command shows the following information. Size - the size of the cache in kilobytes, which you set with the url-cache size option. Entries - the maximum number of cache entries, based on the cache size. In [...]

Although the Zimbra Installation instructions tell you install Zimbra on a system without a firewall, you can get Zimbra to work on a system as long as all needed ports are opened on the firewall. Needed Ports Standard Zimbra ports SMTP port 25/tcp HTTP port 80/tcp POP3 port 110/tcp IMAP port 143/tcp LDAP port 389/tcp [...]

SSTP is a new kind of Virtual Private Networking (VPN) tunnel that is available in the Routing and Remote Access Server role in Windows Server 2008. SSTP allows for Point-to-Point Protocol (PPP) packets to be encapsulated over HTTP. This allows for a VPN connection to be more easily established through a firewall or through a [...]

In Windows Server 2008, the Remote Access Quarantine Agent service restricts remote access clients from obtaining full access to a network until they meet the requirements of the network.  By default, there is a Windows Firewall inbound rule for the Remote Access Quarantine Agent service to enable traffic on TCP port 7250. However, you can [...]

Configuring FireWall-1 for content filtering with Websense involves three basic procedures: Creating a UFP Server Object for the Websense Filtering Service. Creating URI Resource Objects for the dictionary categories that Websense sends to FireWall-1. Defining rules that govern how FireWall-1 behaves when it receives a response from Websense. Create a Server Object Before FireWall-1 can [...]

To configure Group Policy to allow the remote administration of your computers, follow these steps. Create a Group Policy object for the organizational unit that contains the Windows XP SP2-based computers that you want to manage: Log on to a domain controller. Click Start, click Run, type dsa.msc in the Open box, and then click OK. Expand your domain, right-click the organizational [...]

If you are running a firewall on the computer that is running SQL Server 2005, external connections to SQL Server 2005 will be blocked unless SQL Server 2005 and the SQL Server Browser service can communicate through the firewall. You must create an exception for each instance of SQL Server 2005 that you want to [...]

Websense works as a filtering engine for the Cisco Content Engine, allowing you to enforce your organization’s Internet access policies. Once Websense is installed on your network, you must activate it within the Content Engine. This can be done through the Cisco Web-based interface or through a console or TELNET session, by following the instructions [...]

Programs may require ports to be manually opened so that the programs work correctly when ICF is in use either on the local computer or on the gateway computer. You may have to manually open a port if there is a service that is running on a computer that has ICF enabled that you want [...]

For Cisco PIX integrations Websense Filtering Service supports URLs of up to 4 K bytes.  PIX Firewall software versions 6.1 and earlier do not support filtering for URLs longer than 1159 bytes.  PIX Firewall software versions 6.2 and higher support filtering for URLs up to 4 K bytes for Websense Filtering Service. PIX Firewall software [...]

A remote Cisco PIX firewall can be configured to send URL requests to a central installation of Websense software via a VPN connection. The Remote PIX must be reconfigured to include the outside interface as part of interesting traffic for the VPN and the nonat ACL must also include the outside interface. Below is an [...]

Dnsmasq is an opensource light-weight,easy to configure and administer DNS and a DHCP Server. Dnsmasq is ideally suitable for smaller networks like Small Office and Home Office networks (SOHO) and branch office networks. Dnsmasq can be run on old PC and is very easy to configure and administer. Dnsmasq is seen to support upto 1000 [...]

IPCop Firewall is a well known Opensource Linux distribution built to protect Home and SOHO networks from hackers and potential intruders on the Internet. IPCop can run a old PC and can be installed and be operational within minutes. Please click here for more information on the Hardware compatibility list. Installation is fairly straight forward. Involves downloading [...]