I was hoping
someone can help me out. I have a Nokia IP330 running checkpoint 4.1
SP1(licensed for 100users). Recently we started running into an issue of
licensing with the following messages in /var/log/messages:
May 21 15:37:39
corpfw [LOG_CRIT] kernel: FW-1: too many internal hosts (185) detected (followed
by a list of IP addresses)
Last week I had to
bounce the firewall because no incoming requests were allowed in until the
fw.hosts file was cleared. The first question I have is: Does the firewall stop
forwarding incoming packets once the licensing is breached and how long
does it take for that to start happening?
The second
question is this: I have maybe about 90 hosts (including servers, switches
etc...) so technically I should be OK. But as I realized looking at the list of
ip's I am getting a bunch of 169.254.x.x addresses and also AOL addresses as
well as 10.x.x.x(which we get assigned when we VPN into our production network
using Bay extranet Client) Is there any way that we can prevent the firewall to
count those IPs as internal?
Thanks for any
help
--------------------------------------------
Eugene Borukhovich
Systems
V:212-401-3879
E-Mail:[EMAIL PROTECTED]
--------------------------------------------
