We had this problem as well. For some reason the entries don't seem to time out (4.1SP5). We run a nightly cron job to clear out the pool and it doesn't seem to affect anyone adversely, even if they are currently using Securemote:
(/root/clear_ip_pool): fw tab -t fwx_cntl_dyn_tab -x << EOF YES EOF Good luck! j -----Original Message----- From: Mark Ward [mailto:[EMAIL PROTECTED]] Sent: 22 September 2002 09:56 To: [EMAIL PROTECTED] Subject: [FW-1] secureclient question I am using VPN Pool NAT on FP2 and i keep getting the message that all addresses have been used in the pool. Can somebody tell me where I set the timeout values i.e. when are IP addresses released back into the pool and does re-installing a policy clear down the pool. thanks Mark ------_=_NextPart_001_01C262DA.088F0B20 Content-Type: text/html; charset="iso-8859-1" <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1"> <META content="MSHTML 5.50.4916.2300" name=GENERATOR> <STYLE></STYLE> </HEAD> <BODY bgColor=#ffffff> <DIV><FONT face=Arial color=#0000ff size=2></FONT> </DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2>We had this problem as well. For some reason the entries don't seem to time out (4.1SP5). We run a nightly cron job to clear out the pool and it doesn't seem to affect anyone adversely, even if they are currently using Securemote:</FONT></SPAN></DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2></FONT></SPAN> </DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2>(/root/clear_ip_pool):</FONT></SPAN></DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2></FONT></SPAN> </DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2>fw tab -t fwx_cntl_dyn_tab -x << EOF</FONT></SPAN></DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2>YES</FONT></SPAN></DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2>EOF</FONT></SPAN></DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2></FONT></SPAN> </DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2>Good luck!</FONT></SPAN></DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2></FONT></SPAN> </DIV> <DIV><SPAN class=184022608-23092002><FONT face=Arial color=#0000ff size=2>j</FONT></SPAN></DIV> <BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px"> <DIV class=OutlookMessageHeader dir=ltr align=left><FONT face=Tahoma size=2>-----Original Message-----<BR><B>From:</B> Mark Ward [mailto:[EMAIL PROTECTED]]<BR><B>Sent:</B> 22 September 2002 09:56<BR><B>To:</B> [EMAIL PROTECTED]<BR><B>Subject:</B> [FW-1] secureclient question<BR><BR></FONT></DIV> <DIV><FONT face=Arial size=2>I am using VPN Pool NAT on FP2 and i keep getting the message that all addresses have been used in the pool. Can somebody tell me where I set the timeout values i.e. when are IP addresses released back into the pool and does re-installing a policy clear down the pool.</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>thanks</FONT></DIV> <DIV><FONT face=Arial size=2></FONT> </DIV> <DIV><FONT face=Arial size=2>Mark</FONT></DIV></BLOCKQUOTE></BODY></HTML> ------_=_NextPart_001_01C262DA.088F0B20-- ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
