Hello Babu,
>Hi,
>I want to monitor and manage a Nokia firewall box using checkpoint
>enterprise management console. Is it possible.
The answer is yes. Since CheckPoint FW-1 is the only firewall softare that
runs on the Nokia platform, it can be managed like any other Checkpoint box.
The Enterprise Management Module is just a type of management server as
deteremined by your license with CheckPoint.
>Second issue is can we establish VPN tunnel with checkpoint firewall
> >configured for redundancy (That is two firewalls configured at both >the
>ends). If one firewall in redundant configuration fails, do we >need to
>re-establish the session once again or it is automatic.
On the Nokia platform you can use the built in support for VRRP (Virtual
Redundancy Routing Protocol) to allow for automatic fail-over in the event
that one of your FW's goes down. Prior to FW-1 4.1, encrypted sessions did
need to be re-established if a fail-over occurred. However, with the
release of 4.1, there is now support for Gateway Clusters. When used in
conjunction with VRRP, this can provide a pretty robust redundancy config
for your VPN tunnels. I can't say that they will never go down but at least
its better than before. Gateway Clustering allows you to define multiple
gateways that can be used as backups to the initial VPN gateway. Its pretty
well documented in the CheckPoint manuals too. I've set it up a couple of
times and it hasn't been too difficult. Just remember to include all of the
interfaces of each gateway in the cluster when you define the cluster object
on the remote end of the VPN.
Please help me.
>
>Thanks & regds.,
>Babu
>-
Hope this helps,
opiesan
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
