Thanks for the reply Reinhard,
I have double checked and definitely the security policy allows ssh
access. I have also checked the sic status which is communicating and I
am able to push the policy on module. I am able to do ssh from internal
network but not from the internet. The module is
Hi all,
I configured two EDGE boxes exactly like in the manuals for HA. Two dedicated
IP addresses + one virtual inside, one IP on the outside. On the passive box
I enabled do not connect to internet when in passive mode.
Ping runs good and if I pull the internet plug of the active box I see
Hi Micha,
Could you post your racoon.conf file? did you manage to work as a racoon
user?
Micha Borrmann wrote:
Christoph Trahm wrote:
I'm trying to use a Linuxbox to connect to a CP-FW1 (R55) VPN Gateway.
Unfortunately there is no VPN client from CP for the Linux i'm using (Fedora
Core 4,
Hi,
Check Point has a license called Connect Control which will accomplish
the same load balancing on HTTP as well as other protocols. Not sure
about Rainwall.
Thanks,
Ramki
Alexander Simbun wrote:
Hi,
Well... we going to use Content Switch to load balance the web, ftp
email servers.
Hi
I'm new to VPN-1 Edge X devices so I don't know how to configure this
device to use a site-to-site VPN connection to my NGX R60.
The goal is to force all LAN users behind the Edge X box to pass all
communication through the NGX box via VPN.
I need some help/information on how to confige VPN
Can an VPN-1 Edge firmware be updated using cprinstall and if so how do
you specify the Edge firmware.
eg
# cprinstall get my_edge_unit - works
# cprinstall install -boot my_edge_unit firmware - does not
work
Refer this link
http://server.iad.liveperson.net/hc/s-9995810/cmd/kbresource/kb-239115280361882560/!DOWNLOAD?entryid=17849attachid=1651
This a document on R55. There is some difference in NGX on how the VPN-1 Edge
objects are created. There is no profile in NGX.
Thanks,
Ramakrishnan
Hi,
1.- In the smartdashboard define a new Network object, right click on Check
Point and select new Check Point then select VPN-1 Edge, Endebbed Gateway
2.- Configure it like this:
Name: x
IP Address: x.x.x.x The IP address you had configured in the wan port
You can do the same thing with Rainfinity if you're using the correct
product. It sounds like you're only using the Rainwall for FW-1, not
their content product. The short answer is, if you already own Rainwall
for fw-1 and the Cisco content switches, use rainwall for your firewalls
and the
Hello Michael,
did you try this also with a more current firmware 6.x? I am seeing lots of
improvements in 6,
maybe your prob is also solved...
Steffen
___
Telefonate ohne weitere Kosten vom PC zum
Have you tried a 6.0.x firmware? 6.0.53 is the latest one released for the
Edge.
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf
Of Michael Schwartzkopff
Sent: Wednesday, March 29, 2006 3:35 AM
To:
AFAIK the HA for VPN-1 Edge NGX does not maintain current sessions (i.e.
no state table sync).
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf
Of Steffen
Sent: Wednesday, March 29, 2006 4:45 PM
To:
Connect the synch interfaces with a cheap hub. Plug your laptop or a sniffer
in the hub also. I dont think the sync shares state tables. The way it
appeared when I was testing the failover was that it was just a ping to see
if the main system was alive. If it was not then the system failed over. I
Maybe you can try using fw monitor or tcpdump to wether the connection is
reaching your module. Also check the if there are no other device that may
be blocking this type of connection.
Traceroute works fine?
Best Regards,
Lino E. Avila
-Original Message-
From:
check if sshd is bind on the private interface.
Tauseef Khan wrote:
Thanks for the reply Reinhard,
I have double checked and definitely the security policy allows ssh
access. I have also checked the sic status which is communicating and I
am able to push the policy on module. I am able to do
Am Mittwoch, 29. März 2006 16:51 schrieben Sie:
Have you tried a 6.0.x firmware? 6.0.53 is the latest one released for the
Edge.
Yes. But meanwhile I learned that EDGE does NOT support state syncronisation
in the HA setup.
Michael.
=
To set
Thanks for your help, could you send me more details on how to check
sshd bindings with interfaces. I thought if sshd is enabled you should
be able to ssh from any interface. That was the case with ipso 3.7.
Look forward to hear from you soon
Kind regards
Tauseef
-Original Message-
Could anyone share any BGP experiences on Nokia? Plan on implementingbron=
IP 1200 series and I am aware license requirements but wouldbrappreciate=
any experiences with respect to load on firewall and anybrother configur=
ation 'day or nightmares'?
TIA,
benisarg
18 matches
Mail list logo
