1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Any Netscreen Experts Out There??

Discussion in 'Computer Security' started by Nelix, Apr 19, 2007.

  1. Nelix
    Honorary Member

    Nelix Gigabyte Poster

    1,412
    3
    82
    Hi All

    Long time on see/chat/post.....I could go on, but I wont.

    Having recently become a single man again I feel it's time to take my mind of everything and dive back into the learning as it has been onthe back burner for far too long over the last year or so.

    My first challenge is to configure port forwarding on my firewall (Netscreen 5XP).

    I have 2 applications that can conect to one of my servers from the internet and together they use 3 different services

    Data
    Command
    and RPB (remote playback)

    I have defined a service on the firewall for each of these setting up the protocol and the ports etc, I have also created a group that contains the above services/protocol stacks.

    My question is this, do I need to define a VIP for each of the above aswell or just 1 VIP for the group.

    Thanks

    Nelix
     
    Certifications: A+, 70-210, 70-290, 70-291
    WIP: 70-294
  2. Phoenix
    Honorary Member

    Phoenix 53656e696f7220 4d6f64

    5,726
    175
    221
    I thought u assigned the vip to an interface and a policy to a vip
    and the policy would have all your forward rules?

    could be wrong, been a while since i used a netscreen
     
    Certifications: MCSE, MCITP, VCP
    WIP: > 0
  3. Nelix
    Honorary Member

    Nelix Gigabyte Poster

    1,412
    3
    82
    You could well be right Phoenix, I am just working from a document I found on the net and it's not terribly clear.

    the doc says to create a new VIP for each of the services (Data, Command and RPB) on the untrust interface.

    Just wanted a little more clarity on the situation.
     
    Certifications: A+, 70-210, 70-290, 70-291
    WIP: 70-294
  4. Phoenix
    Honorary Member

    Phoenix 53656e696f7220 4d6f64

    5,726
    175
    221
    Certifications: MCSE, MCITP, VCP
    WIP: > 0

Share This Page

Loading...