I'm new to the world of firewalls so please indulge me as I try to
sort something out.
We have a TIS Gauntlet firewall. I would like to build a plug gateway
to process lotus notes. I understand that notes uses port 1352. As I
monitor traffic I have noticed that, inside the firewall the source
port could be anything but the destination port is 1352. The
destination port at this time is the address of the firewall. If I
monitor traffic outside the firewall the response to a session
initiated inside the f/w being responded to by an outside machine with
have a random source port but a destination port (once again this
appears to be the firewall) of 1352. Currently we have built packet
forwarding rules to allow notes traffic to pass through the firewall.
However if we built a plug gateway to listen on port 1352, I think we
would be able to do all that packet forwarding does and monitor the
Any comments on this would be greatly appreciated.