That's what you get for listening to a sales guy ;-)
If you look at your $FWDIR/lib/control.map file, it will tell you what
the authentication/encryption methodology is between your mgmt console
and your firewalls. The default for 4.1 is fwa1, which, incidently, was
the only one TUV Data Protect was unable to fully crack using the
exploits they showed at Black Hat two weeks ago. So, if you don't set
up a VPN, you'd use the native fwa1 authentication. Hope this helps.
Jason
[EMAIL PROTECTED] wrote:
>
> Rob,
>
> Thanks for the info.
> Lets say I decided not to manage the firewall modules via the VPN and I manage
> them
> thru the Internet.
> My sales rep told me that the management and logging connection between the
> Mangement and firewall is
> using a FWZ (56bit) conection. He also stated that in the current release (FW
> 4.1) you can't change that connection.
> Is this true? Is it possible to change the encryption? If so, how can I change
> the encryption channel from
> FWZ to a stronger one (IKE, Skey, etc.). I'm running FW 4.1 strong edition.
>
> Thanks
>
> AC
>
> ================================================================================
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ================================================================================
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
