[FW-1] Problem with B2B VPN with PFS

Hi, Am having a B2B VPN between my VPN-1 R54 and PIX box.The VPN-1 works fine in normal times but during re-keying I have noticed that VPN goes down and I get decrypted packets did not match rule in the logs .This happens for about an hour and the VPN starts woking fine again. It's a 3DES/MD5

[FW-1] hosting multiple servers behind checkpoint firewall with reverse proxy server

Hi all, As per our network policy, nobody should access the servers on the LAN from INTERNET directly. We have two checkpoint firewalls connected back to back separating DMZ zone. Internet | Router | Checkpoint firewall-1

[FW-1] Nortel ASF 6614 or Nokia 1220-1260

I am trying to find a good replacement for my IP650s and would like know your opinion which one is better as far a bugs and performance (we knopw nokia and ipso but no idea about ASFand its performance)...Thanks *** Cihan SUBASI Garanti

[FW-1] SYN retransmit with different sequence

Dear all, In my office, some users have a problem with Yahoo Messenger. Sometimes it is offline and online again, sometimes it takes along time to login. When I see in fw-1 log there were some drop log : destination to yahoo, source from the workstation which has this problem with service http,

Re: [FW-1] IPSO and RAID?

Hi, | failure? Do | any of these systems support RAID configurations? Seem like in these | days of s/w and h/w raid, there should be a way to mirror | that disk... the larger Nokias do indeed support RAID. I am not sure whether the 530 already does, but I sure know the 710/740 and upwards do.

Re: [FW-1] hosting multiple servers behind checkpoint firewall with reverse proxy server

Right, you'll need an access device in the DMZ. The terms can change, but basically you need some kind of reverse-proxy/SSL VPN/etc. The users connect to that device with an ordinary web browser, then select the back end resource they want to connect to. If they are web applications it might

[FW-1] EXPRESS or ENTERPRISE?

Hi, How can i do to know if a Firewall is EXPRESS or ENTERPISE? I tried with: fw ver cp ver SmartUpdate And nothing...only saw e.g: This is Check Point VPN-1(TM) FireWall-1(R) NG with Application Intelligence (R55) HFA_08, Hotfix 001 - Build 001 But nothing about if the version is EXPRESS or

Re: [FW-1] EXPRESS or ENTERPRISE?

use the SmartUpdate gui or cplic print at the command line to see your license skus, then look at CP's website to interpret them. [EMAIL PROTECTED] 08/12/04 09:25AM Hi, How can i do to know if a Firewall is EXPRESS or ENTERPISE? I tried with: fw ver cp ver SmartUpdate And nothing...only

[FW-1] Beware R55 HFA08!

Warning if use VPN with R55, especially SecuRemote/SecureClient! After upgrading from HFA04 to HFA08 we started having decryption errors (VPN error code 03) with our SecureClient users. Somehow the logged IP address of the VPN Peer Gateway is getting changed (by the firewall) and then decryption

Re: [FW-1] Beware R55 HFA08!

Hi Joe, The correct answer is for you to call Check Point and tell them you want hotfix SHF_FW1_R55_0123 for your gateway platform and you want it TODAY. It will install on top of HFA08. It does require a reboot of the gateway but it fixes the problem. Tell them you cannot believe they just told

Re: [FW-1] Rules for backup firewall

Hi I have tried using the upgrade_export utility to export the configuration into a tgz file.This tgz file can be used to bring-up in minutes ... Note : use the latest upgrade_export utility for that release from CP site. Vadi -Original Message- From: Mailing list for discussion of

[FW-1] ICMP Redirect R55W

Has anyone successfully enabled ICMP Redirects on the latest version of Checkpoint NG with Application Intelligence R55W? Do the old methods still apply? Cheers, Jamie MMS capitalfactors.com made the following annotations on 08/12/2004 05:38:42 PM