question about access lists

[sslevy]

we have checkpoint firewall.
one of the programs we use is called apollo. its an airline reservation system. I've already opened the ports on the firewall that are required, but i have 4 ip addresses that i need to put into checkpoint to allow them in.

How to I go about doing that in checkpoint. I'm a newbie to checkpoint.I'm looking into training for more help with checkpoint.

 

[Lou0686]

Hi,

If I'm reading this correctly, you only want to allow the 4 IP addresses throught the firewall to access the software.

If this is so, do as follows:

1. Create an object for each IP and assign the IPs.
2. Create a group for the objects you just created and add them as members.
3. Create a rule with the following:

Source Destination Services
Group Apollo Object Service Name Accept Log

Lou

 

[sslevy]

Lou, how do i go about creating an object.

 

[Lou0686]

Hi,

I am not infront of one so my answer may be a bit schetchy.

You would create them on the management PC, in Policy Editor (Depends on your version).

Under Manage you should be able to create a node. Specify a name and one of the IP adddress for the node. Repeat for all the IPs.

Once you create the rule stated earlier, push (Install) the Policy.

Sorry that I can't be more explicit but as I said I am no where near one.

Lou