Hi,
-Original Message-
From: NAVTEJ KOHLI [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 29, 2004 4:24 AM
To: [EMAIL PROTECTED]
Subject: [FW-1] Problem IN gUI Client Connection with Firewall BOX
Hi,
I am New in this group, I install Checkpoint Management
Server Enforcement
Hi all,
i have a little problem with an exec called cpmad.exe... it grows to fill all memory
available, and at last, the system crash, if i stop the fw-service the memory frees,
of course...
The system is an 'old' FW1 4.1sp1 over NT, with 2 boxes, this exec grows only on the
primary node, the
You need to run cpconfig and put in the IP of your other machine as a
management client.
BR
Rob
-Original Message-
From: NAVTEJ KOHLI [mailto:[EMAIL PROTECTED]
Sent: 29 June 2004 03:24
To: [EMAIL PROTECTED]
Subject: [FW-1] Problem IN gUI Client Connection with Firewall BOX
Hi,
I am
Also note that you may also need to push the policy before your remote
will be able to use the GUI client. You will obviously need to do this
on the management server itself initially.
BR
Rob
-Original Message-
From: Figaro, Nicolas [mailto:[EMAIL PROTECTED]
Sent: 29 June 2004 08:12
To:
Looks like someone is trying to do something *evil* at your network :-0
CPMAD stands for Check Point Malicious Activity Detection and does what it's fancy
title says but in not that fancy a way ;-). There
is a documented memory leak in CPMAD.exe as far as I know and unfortunately there are
only
The option you mentioned is supposed to back up everything. However, it's not meant
to use parts of the backup to restore to a different platform. My understanding is
that it's an all or nothing backup/restore of SPLAT only.
If you want to restore the rulebase and objects from a SPLAT box to
Hi
I noted that in GUI mode, a security policy can easily be disabled by
clicking Tools - Disable Security Policy.
I've written an application that automatically initializes a VPN connection
using SecureClient's commandline mode (scc.exe). scc.exe does offer a
command to switch off a policy
Does anyone know how I can find out how many TCP connections have been dropped because
they
triggered the TCP-Timeout value (usually 3600 Seconds)?
I have looked in 'fw ctl pstat' but I can't see anything obvious.
Regards, Paul
--
This is the long way around to get the info you want, but it's the only way I've found:
1: Set a filter in your log viewer to show only those drops you want.
2: export the resulting log to a file
3: import the file into your spreadsheet, which will give you the count.
[EMAIL PROTECTED] 06/29/04
Hey All,
Having a problem, I have NGAI and I have setup a simplified VPN. I have 1
central site and about 70 satellites. The satellites can talk to the middle
but cannot talk to each other... I have tried everything I can think of...
but it still does not work..
Any suggestions?
-Alan
Hello everybody,
I'm surprising because on my FW1, i've a lot of errors messages on System, but not on
Applications.
So,
1.Is it normal that some FW-1 messages are reporting on System LOG ?
Actually, i've Logged Informations on Applications and logged Errors on System.
Is it
hi,
are the satellites vpn1-modules or edge-boxes? do they have static IPs?
do you have this community defined as meshed or as star?
cheers
reinhard
At 14:14 29.06.2004, you wrote:
Hey All,
Having a problem, I have NGAI and I have setup a simplified VPN. I have 1
central site and about 70
Getting anything in the log viewer?
-Original Message-
From: Alan Cupernall [mailto:[EMAIL PROTECTED]
Sent: 29 June 2004 13:15
To: [EMAIL PROTECTED]
Subject: [FW-1] problem with VPN Satellites
Hey All,
Having a problem, I have NGAI and I have setup a simplified VPN. I have
1
If you're using NG AI (and maybe earlier?) you can just set up the
filter like you mention in step 1, but then go to the Query menu, and
select Get Number of Filtered Records and it will count them all up
for you.
-Shane
On Tue, 29 Jun 2004 07:16:29 -0500, Kim Longenbaugh
[EMAIL PROTECTED]
Are you looking on the SmartView Tracker?
Which FW-1 releases are you using?
Sébastien
-Message d'origine-
De : Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] De la part de
[EMAIL PROTECTED]
Envoyé : mardi, 29. juin 2004 14:00
À : [EMAIL PROTECTED]
Objet : [FW-1]
Shane, you're right! That's much easier than what I was doing. Thanks for passing
that on.
[EMAIL PROTECTED] 06/29/04 08:37AM
If you're using NG AI (and maybe earlier?) you can just set up the
filter like you mention in step 1, but then go to the Query menu, and
select Get Number of Filtered
Nothing that I have seen to tell me traffic is being dropped
-Original Message-
From: Rutherford, Robert [mailto:[EMAIL PROTECTED]
Sent: Tuesday, June 29, 2004 9:04 AM
To: [EMAIL PROTECTED]
Subject: Re: [FW-1] problem with VPN Satellites
Getting anything in the log viewer?
-Original
I've been wondering two questions relating to throughput
-How much traffic (in Kbps) is my firewall processing
-How much traffic (in Kbps) is going to/from the Internet
I am running NG AI R55 on Solaris 8. I have SmartView Monitor. Can I
get this data from any CheckPoint tools or do I have to
Greetings,
I've head on this list that Checkpoint has R55 HFA-05 and HFA-06 available
but you have to ask for it. Can anyone tell me what the Release Notes says
that it fixes?
-- Joe
=
To set vacation, Out-Of-Office, or away messages,
send an email
You could use MRTG to measure the interface throughput in Kb,
KB, or most other formats you need as long as your security policy or
your particular network policy allows SNMP to be run on the firewalls.
Getting the information by service or host you could use nTop.
Chris Burton
Network
Hello Lists,
Thanks for the response, My problem is sloved now, i made very big mistake.
I did not add the GUI ipaddress in the firewall Box.
Thanks Once again to all List.
Thanks
NAVTEJ KOHLI
_
Add photos to your messages with MSN 8.
10.1.1.2 is the IP address of my SecuRemote computer that is on my home
network behind a PIX 501 that is doing NAT and my DSL modem. I do have both
IKE over TCP and/or UDP encapsulation selected on my VPN client.
138.88.46.143 is the IP address assigned by my ISP. Not sure what else I
should do?
In SmartviewMonitor, look near the upper right corner of the display.
There's a little numeric dsplay that gives you the total.
Ray
From: Shane Presley [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
[EMAIL PROTECTED]
To: [EMAIL PROTECTED]
Subject: [FW-1] Monitoring
Thanks for the update, Chris. We currently have a kind of modified Star for
our WAN and we want to build redundancy in so if the corporate office goes
down, at least the rest of the company can stay up (think Aug. 14 blackout).
In a Star topology, if the central gateway goes nova, the rest of the
I am running version 4.0.85x
hardware version is 1.0
I am getting a 1 way encryption domain, I have the encryption domain set to
a network object in the firewall, In the LSM I have the vpnedge object with
an encryption range set in it.
I can get traffic to encrypt from the edge box to the Nokia
25 matches
Mail list logo
