I will be out of the office starting 12/19/2005 and will not return until
12/26/2005.
Meanwhile you can reach Aresh Ghannad (015/35.45.83, [EMAIL PROTECTED])
for urgent matters.
Regards,
Philip
This e-mail and any attached files are confidential and may contain
information which is
Try using no authentication (if not already done). That is old version
compatibilityRK
Serwatko Pawel wrote:
Hi everybody
I have big trouble with my firewall. I have web filter working as UFP
security server. It was worked about a year without any trouble.
Suddenly I noticed that
Hi
I forgot to notice that this kind of configuration also not working. The
second web filter software uses this type of communication - Clear Opsec
without SIC.
I tried to set SIC and it working, but UFP not.
-Original Message-
From: Mailing list for discussion of Firewall-1
Thank you both for the replies, that was helpful!
Shane
On 12/16/05, Fabrice BARUTEL [EMAIL PROTECTED] wrote:
Hi Shane,
some times, some onboard dual Intel 1000 are limited to about 800Mb by the
internal bus behind it.
I think it's true for example the HP DL380 (I have it with 14 network
Lindsay Hill wrote:
What if you use fw monitor on the firewall? Can you see traffic going
back and forth there?
fw monitor shows the packets going in both directions. using -p all
allows the packets to be traced right through the stack.
Using Ethereal to decode the packet traces shows the
I've just downloaded the licenses. Here's what is in my usercenter.
Description:
CPMP-HVPG-U-NG
High Availability VPN-1 Pro Gateways for Unlimited Users
Certificate Key:
Xxxx
License Version
NGX
Description:
CPMP-VEPRO-U-NG
Check Point Enterprise Pro - VPN-1
Hi,
We defined one network group name InternationalMobile which include one
netowrk_object HKnet1,
And we have one policy for it as below:
Chinanet1InternationalMobile GTPaccept
But we found packet from Chinanet1 to HKnet1 could not go pass the FW,
nothing was found in fw ctl debug
Has anyone been able to get Zebra 0.94 running on SPLAT?
SPLAT comes with 0.93b installed, and we're having issues where it seems
to be sending out of sequence DBD updates. I wanted to try upgrading to
0.94, but obviously there's no compilers on splat with which to install
0.94.
Jeff Jarmoc -
Did you upgraded your license to NGX. Does the new NGX licenses need not have
NGX extention.RK
[EMAIL PROTECTED] 12/19/2005 12:04:57 PM
I've just downloaded the licenses. Here's what is in my usercenter.
Description:
CPMP-HVPG-U-NG
High Availability VPN-1 Pro Gateways for Unlimited
I upgrade the license in the usercenter. The software version is NGX
according to the usercenter in the description key I noticed it says ng but
there's no way to change this. I did the upgrade license there.
Regards,
-Original Message-
From: Mailing list for discussion of Firewall-1
Also check the features you have selected in the cluster object. Unless you
have any special feature licenses, you should have only Firewall, VPN and
ClusterXL selected. Qos if you enable Floodgate.RK
[EMAIL PROTECTED] 12/19/2005 1:16:04 PM
I upgrade the license in the usercenter. The
Hello,
Is there an easy way to add static routes to Secure Platform (regular
not pro). I don't need any routing protocols, but I do have about 50+
static routes.
I currently use Solaris for my firewalls, so I have my static routes
in a startup script. I'd like to just use that script to input
To add a static route for a network:
# My comment for this network route
route add -net 10.0.0.0/8 gw 1.1.1.1
For a host:
# My comment for this host route
route add -host 2.2.2.2 gw 1.1.1.1
- Dave Row
-Original Message-
From: Mailing list for discussion of Firewall-1
Here's the usages of the route command...
[EMAIL PROTECTED] route -?
Usage: route [-nNvee] [-FC] [AF] List kernel routing tables
route [-v] [-FC] {add|del|flush} ... Modify routing table for
AF.
route {-h|--help} [AF] Detailed usage syntax for
specified AF.
To my knowledge, you can modify the /etc/sysconfig/cpnetstart and put static
routes
into this file. The other alternative is to use /etc/rc.d/rc.local file.
cisco4ng
Shane Presley [EMAIL PROTECTED] wrote:
Hello,
Is there an easy way to add static routes to Secure Platform (regular
Anybody have experience with splat multicast and cisco switches and
routers? I am having severe problems as my highly redundant (firewall,
switch, routers) seem to be working against me. I cannot keep both
members up at the same time.
steve
=
We were recommended to use the /etc/ethers file to add the static
route, and then mod /etc/rc.local to run arp -s /etc/ethers, which
achieves the same result as what ciscong4 proposed.
Not sure if that is what checkpoint recommends as best practices, or
whether it just the way our support
Hi everyone,
I've been struggle for the past couple days to find out how to
figure out the maximum of conncurrent connections, packets per
seconds (pps), and number of connections per seconds going
across a Nokia/SPLAT firewall. Let me give a few examples:
Example #1:
Hi Martin,
Thank you very much for your reply.
1) My nokia is an IP740 with 1GB of RAM. I run NG FP3 w/ HFA 325. When the
CPU is at 99% and I run fw tab commands, it actually crashed the firewall
twice,
2) I can not use smartview monitor because I don't have the license
Hi there,
We found radius packet blocked by AI R55 here, and from the connections
table, it have a wrong Rule index:
1:26:19211.139.189.197
---(+); Direction: 0; Source:
211.136.20.37; SPort: RADIUS1813; Dest: 211.139.189.196; DPort:
RADIUS1813;
20 matches
Mail list logo