Hello,
We are having a problem with our SecurePlatform FW1 NGX ClusterXL High
Availabilty R62 dhcp-relay configuration.
We have configured ethernet interfaces for DHCP-relay and added to our
policy a couple of rules to allow dhcp relay packets back and forth.
DHCP relay works correctly
Yes I have 3 gig in each firewall.
I am currently running NG AI R55 HFA18 on HP DL 380's in
active/passive
mode running SecurePlatform. On the SmartView Status under System
Kernel Memory I am seeing a negative number under allocations. On
both
the primary and the standby at different
Hi Guys,
a question for you:
I must install SPLAT on HP G4 and I have media kit Checkpoint R55 HFA 12
installed on a brand machine. At present My build of SPLAT installed is
Build 121
On Compatibility list Checkpoint site G4 is supported from Build 124.
What is the last build released of
Garner, Annette K **BETH wrote:
Yes I have 3 gig in each firewall.
try removing 1Gig from a firewall a see if it occurs again.
=
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
cisco4ng wrote:
Hi,
I have two IP address on a physical NIC of the Nokia IP380. Let say the
NIC is eth1
and I have the following IP addresses on it:
192.168.1.1/24
172.16.1.1/24
The default gateway of the Nokia IP380 is 192.168.1.254. I would like to
perform
Scarpati Massimiliano a écrit :
Hi Guys,
a question for you:
I must install SPLAT on HP G4 and I have media kit Checkpoint R55 HFA 12
installed on a brand machine. At present My build of SPLAT installed is
Build 121
On Compatibility list Checkpoint site G4 is supported from Build 124.
What
I had to use the build that came with R-60 for it to recognize the raid card
in the G4
- Original Message -
From: Scarpati Massimiliano [EMAIL PROTECTED]
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Sent: Tuesday, January 23, 2007 7:55 AM
Subject: [FW-1] R55 SPLAT last build?
Hi Guys,
Hi Eduardo,
We (still) have a R54 ClusterXL loadsharing cluster on solaris, with DHCP relay
for 2 interfaces (out of 12). We've seen the same, only I figured it had to do
with the difference in the IP source on the packet (the cluster IP) and the
server IP in the DHCP info (the node interface
Mel, 50 Mbps seems may be the touching limitation indeed, in your case. -
IP740's would choke depending upon the number of rules/packet size/type of
encryption in use. The official Nokia figures w/ a base of 100 rules and w/
an encryption acclerator card can go down to as low as just 8Mbps
What pkc_mls is trying to tell you is that the support is NOT free. My
company, on
average, pays about $1500 per checkpoint TAC case. Heck, that is like five
times
more than the cost of an escort service. At least with an escort service,
you're guarantee of
the outcome. With
Hi,
I think you have to modify (create the fwkern.conf if it does not exist) the
fwkern.conf file in
$FWDIR/modules/ dirrectory so that SPLAT can recognize more than 2GB of RAM.
As I recalled SPLAT NG Feature Pack 3 has problem with system with more than
1GB
of RAM. The fix is as
Your information is incomplete.
the answer is, it depends. Your firewalls could be passing 10Mbps traffics
and the CPU
could be running at 100% if you have a lot of connections fw ctl pstat.
I have an Nokia IP740 running Checkpoint NGx R61 with HFA_01 and IPSO
4.1build 19.
Ok, i have an Enterprise Software Subscription and Standard Support with my
Licence that I pay. Is it useful for me to ask an Image? Or could my partner
contact checkpoint and ask an iso for me with my Enterprise Software
Subscription and Standard Support?
If yes how many time to have a Build
Hi all,
I want to build a VPN connection (site-to-site) between my CheckPoint NGX R60
and an IP filter gateway. Mutual authentication will be done through
certificate.
So, how do I generate a certificate for the IP filter ?
Do I need to use the ICA Management tool, or is it only for managed
You are right, my answer indeed was not complete - if connections would have
hogged CPU, I thought Mel would have indicated it or even resolved it but he
questioned and I answered purely from that perspective - btw, no answer is
complete - it begets more questions, is it not;-)?
-r
On 1/23/07,
From my personal, mutual site-to-site vpn between Checkpoint and other vendors
do NOT
work too well. I've tried between CP NG with AI and NGx with Cisco IOS/Pix
firewall with
external certificate such as Microsoft CA Server and the site-to-site VPN
does not work.
I've called up both CP
if it's just NTP, I don't see what the big deal is, but on the other hand,
if they have policies about these kind of things, do you even have a choice?
On 1/8/07, Ruiyuan Jiang [EMAIL PROTECTED] wrote:
Hi, all
A client wants to sync all the devices in their DMZs. Since the client
has
Compatibility with Daylight Saving Time introduced in 2007
Solution ID: #sk32456
Note that the release notes for IPSO say that CLI can be used to create
custom DST rules. I didn't see anywhere that the new rules are in fact in
place. So...
Ray
Hi Sergio,
Thanks. As suggested by you i tried, it worked perfectly.
Thank you very much to the list for getting the quick response.
Regards,
Sankar
On Mon, 22 Jan 2007 13:25:20 -0600, Sergio Alvarez wrote
Run upgrade_export on your current SmartCenter and after installing
your new Smart
19 matches
Mail list logo