RE: [FW1] Any SYN ~ FW1/Rainwall expert out there ?

Thu, 15 Jun 2000 09:06:18 -0700 


Thanks to Lance for the state conversion script; just as an FYI rainwall
DOES use the built-in Checkpoint state databases.

I've got 4 firewalls that are sharing state and the #VALS doesn't ever seem
to be quite the same, but they are really close.  Since I've got a fairly
large user base, I expect that.  

For a low number of connections, though, you are correct - they should be
exactly the same.

chris
-----Original Message-----
From: Brian Koref [mailto:[EMAIL PROTECTED]]
Sent: Thursday, June 15, 2000 10:01 AM
To: [EMAIL PROTECTED]; Lance Spitzner
Cc: [EMAIL PROTECTED]; [EMAIL PROTECTED];
[EMAIL PROTECTED]
Subject: RE: [FW1] Any SYN ~ FW1/Rainwall expert out there ?



What I've done is issue a fw tab -t connections -s on both firewalls 
at the same time and compare the VALS number.  They should be 
identical. It's a quick method, however if you need to dive in deeper, 
check out lances link.  Also, if you're using Rainwall...I don't think 
that they use checkpoints state table sync.  -BK

On 15 Jun 2000, at 7:59, Lance Spitzner wrote:

> 
> On Thu, 15 Jun 2000 [EMAIL PROTECTED] wrote:
> 
> > The state tables, in short, are horrible.  There is no way to verify
with a
> > tool that all of your state tables are in sync.  
> 
> I have never tried it, but why not view the actual state tables on
> both systems and then compare?
> 
> fw tab -t connections
> 
> This will give you the state table in Hex.  If you prefer, there is also
> a script that will convert the state table for you.
> http://www.enteract.com/~lspitz/fwtable.html
> 
> Just an idea :)
> 
> lance
> 
> 
> 
>
============================================================================
====
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
>
============================================================================
====




============================================================================
====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
============================================================================
====


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Reply via email to