Hi,
We are using FW1 NG AI, how to check of how many concurrent user are using the
fw ?
Thanks.
Regards,
Zul
=
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set
Hi when you say Concurrent users you mean... Secure remote? Secure client?
Did you mean concurrent connections?
I need some help here in order to answer...
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf Of Test2
Sent: Friday,
Hello
I have a BIG problem, I have Check Point NG R55, I have this network's for my
services's PoC (Push to Talk)
APNs PoC - Firewall A - Redes Corporativas - Firewall B - Platfform
Push to Talk (PoC).
The problem is what the smart defense block all traffic SIP because it
understand this
fw tab -s -t connections
[EMAIL PROTECTED] 11.11.2005 11:27
Hi when you say Concurrent users you mean... Secure remote? Secure client?
Did you mean concurrent connections?
I need some help here in order to answer...
-Original Message-
From: Mailing list for discussion of
I'm using VPN between our two business LAN's LAN A and LAN B, with NG AI R55
HFA_16
now, if i want copy a large file (more than 40 MB) from my workstation on LAN A
to a Server on LAN B after a while the connection broke with Cannot copy FILE:
The specified network name is no longer available.
hi,
try to use a smaller MTU for this workstation of server...
cheers
reinhard
At 15:13 11.11.2005, you wrote:
I'm using VPN between our two business LAN's LAN
A and LAN B, with NG AI R55 HFA_16
now, if i want copy a large file (more than 40
MB) from my workstation on LAN A to a Server on
Aleks,
Thank you for your response.
I will try the Integrity Agent for Linux soon.
We did several labs. IAS 5.1 works fine. 6.0.100 and 6.0.459 worked fine in
different lab. 6.0.659 seems to be reproduceable -- Integrity info: Client
machine has no Integrity client, InterSpect Tracker says.
Is it possible to terminate an IPSec tunnel from a server in the DMZ, to
the FW, and then have the FW recreate the tunnel to the back end server?
The reason for asking this is I would like to encrypt the backend data
flow, but I would also still like to run packet filtering on it (and
I am using NGX R60. I see lots of dropping traffic for the broadcast
packet. How can I stop seeing this kind of traffic in my log file? It
fills up my log quickly.
Thank you.
Bernard Jen
=
To set vacation, Out-Of-Office, or away messages,
send
Bernard,
I used to have the same issue so I just put a rule in my policy that
right before the last rule for the drop all not matched it said any
packets with service type nbdatgram were to be dropped and not logged.
This worked for me and hope it helps you.
Regards,
Steve
-Original
Create an explicit rule for the broadcast traffic that drop/rejects it and
choose not to log. Put this above your cleanup rule (which is logging this
traffic).
Ash
From: Mailing list for discussion of Firewall-1 on behalf of Bernard Jen
Sent: Fri 11/11/2005
Put in a rule to silently drop the traffic. It's pretty much a
standard rule. Something like:
Any - broadcast address - any - drop - None
On 11 Nov 2005, at 19:02, Bernard Jen wrote:
I am using NGX R60. I see lots of dropping traffic for the broadcast
packet. How can I stop seeing
Dear Kalpesh,
it's me again...
I refuse to let you work with this configuration. The solution is to add
the office mode range to the UK encryption domain. As soon as US
Firewall knows about this it can establish an SA for this destination
network. Then UK firewall relays the traffic to the
Trying to install a policy from an r-55-hfa-14 manager yields the error
below. Has anybody else seen this or have a possible fix? Checkpoint
support is clueless. Thanks, GS
Policy Status Details
Adv. Security Error Compilation failed
Adv. Security Error
Since the two encryption domains are adjacent, Check Point may be
supernetting them. use GUIDBEdit and look for a property named something
like use_largest_possible_subnets . By default it is true. Change it to
false and push the policy to both firewalls.
IMHO this is one of the silliest
Define migrate please. Do you mean merge an existing certificate
authority into an existing one or do you really mean migrate as in the
NGX box is replacing the R55 box?
Ray
From: Meyers, Duncan [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
16 matches
Mail list logo