For me Netscreen 50 Firewall is a very sophisticated networking device. Operating and maintaining it is daunting too. But if your determined to learn how to operate such machine it, wouldn't be hard. So I will just post some of the most important configuration settings of netscreen 50 for future references.....I almost forgot how to add a service on the netscreen policy, so to avoid that. it would be nice to post it here.

a friend wanted to host his clients website to our Lotus Notes Server temporarily, which is of course in Lotus Notes based system. So before I could actually do that I need to open the port of lotus domino on our netscreen 50 firewall, and the port is "1352". For me to do that I need to go to our web based Netscreen 50 address.

Then go to OBJECTS - - - click on SERVICES - - - and click on CUSTOM and then click NEW, to create a custom service. Specify the Service Name, so I named it Lotus Notes; on your SERVICE TIMEOUT --- chose Use Protocol Default. At the bottom you would see Transport Protocol--so chose TCP; then specify your Source Port -Low and -High your Low you can put (1) and on your High (65535) and then to your Destination Port -Low and -High, put the Lotus Notes Port which is 1352 on both LOW and HIGH. And then click ok. There you have your Lotus Notes Services. But we are not done yet in order for my friend to remotely access my domino server which is under DMZ, I still have to create a policy that would allow Untrust access to my InternetServers. To do that click on POLICIES then chose for your FROM:Untrust and for your TO:InternetServers. Click on new specify the source and destination, dont forget to indicate the Service which is: Lotus Notes.

So there you have it. We are now set to access my domino server remotely.