I did this also. I just setup another box with the same IPs (not connected
to a network). And used my key. So I matched it at the 3.0b SP8 level.
Copy over the conf directory and local.arp. And reenter the routing
entries. Also, Make sure you edit the local.arp for your new MAC address.
Also once you get the policy on the new one. Go into your FW object and
re-SNMP get your interfaces and reenter your spoof settings. If you have a
single gateway FW like I do, you will need to edit the external.if file to
match your external card.
I then installed FW4. and each service pack up to SP4. (I haven't gotten my
FW4.1SP1 CD yet.) It has worked well. (after I edited the local.arp. That
will confuse your NAT if it isn't changed.)
I hope I didn't leave anything out.
Thanks,
James
----------------------------------
James Aaron Lee Byrd CCSA CCSE
PC/LAN Manager
IU Credit Union
http://www.iucu.org
Email: [EMAIL PROTECTED]
http://www.byrdville.com
-----Original Message-----
From: William Schwartz [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, May 31, 2000 4:33 PM
To: [EMAIL PROTECTED]
Subject: [FW1] Firewall upgrade / migration
I've been looking for some information that I have not found anywhere. I've
read over Phoneboy's FAQ but am still a little unsure of the steps I need to
take.
Here is what I'm doing. A site running NT Firewall-1 3.0b bought a new
server to replace the existing firewall. NT Firewall-1 4.1 sp1 was also
purchased. I'm looking for the "correct" way to move the existing firewall
to the new box and upgrade it to 4.1sp1.
My assumption was that I would install the server with NT first and lock it
down according to all the docs that are available. Then I would install the
3.0b sp8 on that box. I would get a temporary 3.0b key from my reseller and
install that. Then I would copy the existing firewall config from the old
firewall to the new firewall and restart. I should then have a clone of my
firewall running on the new server. Then all I have to do is do an in place
upgrade of 4.1 on that box...
Is this correct? Or am I missing something essential?
Thanks!
Will
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
