For the archives:
Static assignement should be chosen if you use at least one of the
following features:
.. Floodgate-1.
.. Sequence Verifier.
.. Worm Catcher
.. Delayed notification of connections
.. Security servers
.. IP pools (with non-Check Point gateways or clients). See Supporting
Hi,
As far as I remember you don't need an additional license to setup isp
redundancy.
And it doens' matter on which public ip you put your license.
Kind Regards
Robby
On 7/20/06, Verweyen, Dirk [EMAIL PROTECTED] wrote:
Hey,
we got a second leased line to the internet
and plan to connect it
Hi Clive,
Broadcast/Multicast: This differentiates how the cluster members
communicate with each other. Multicast would required special
configuration in some switches connecting the cluster members and hence
may create issues. Broadcast would eliminate this issue.
Ramki
CCNA, CCSE-NGAI
First upgrade the management station. Before that take an
upgrade_export of your current configuration. Once the management
station is upgraded, then upgrade the modules. Refer the checkpoint
upgrade guide for detailed instructions.
I have heard that NGX R61 is older than NGX R60 with
I have heard that NGX R61 is older than NGX R60 with HFA03.
It is. It's based on NGX R60 HFA02, or around that timeframe.
Regards
Thorsten Behrens
SMC Supervisor / Senior Security Engineer
CCMSE CCSE+ CCNA
INTEGRALIS
Your Trusted Security Partner
111 Founders Plaza
13th Floor
East Hartford,
Ray wrote:
This questrion might be answered faster over on the Discussion Groups
of http://www.sofaware.com (lower left part of the home page). Their
tech support people monitor the forums and post replies as well as it
being used to user-to-user support.
Ray
Hi Ray,
I did what you
Static assignment means that all traffic will be inspected by the same
node during session activity. Dynamic assignment means, that packets
within particular session could be / will be inspected by different
modul.
AndrejS
-Original Message-
From: Mailing list for discussion of
At 09:54 AM 7/26/2006, you wrote:
Ray wrote:
This questrion might be answered faster over on the Discussion Groups
of http://www.sofaware.com (lower left part of the home page). Their
tech support people monitor the forums and post replies as well as it
being used to user-to-user support.
Hello,
I have an FW-1 NGX60 infrastructure with two enforcement modules in a cluster
configuration and a SmartCenter Console equipment, the thing is that I need to
activate the QoS feature.
I have been looking for the way to activate the services and have the the QoS
Pane in the
Guys,
I did not come up with this design but I have to support this
so here we go. Keep in mind that the customer wants to keep
everything as is and wanted me to make this work.
Scenario:
OS: Nokia IPSO 3.7.1 build 024
Checkpoint: NG with AI R55w and HFA_04
Internal network:
NGX R61 is supported from IPSO 3.9 and above.
Check The Release Notes of R61
Regards,
Lino
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf Of Mark Elsen
Sent: Lunes, 24 de Julio de 2006 04:01 a.m.
To:
hi,
this is possible with the predefined http_mapped service - in the
advanced part of the service-definition you can enter the proxy-ip.
cheers
reinhard
At 22:05 26.07.2006, you wrote:
Guys,
I did not come up with this design but I have to support this
so here we go. Keep in mind that
Does anyone know any know issues for R61? The one I know is the
'http_activate_ss_protections' must be active in order to download large
attachments.
Anything else?
Best Regards,
lino
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On
hi,
r61 and ipso41 have been release about at the same time. so nokia
could not test r61 and checkpoint not ipso41.
but: it works
and: there is no info anywhere that it's not supported
there will be an information (tac-newsletter) from nokia soon that
r61 is supported on ipso41
cheers
hi,
r61 and ipso41 have been release about at the same time. so nokia
could not test r61 and checkpoint not ipso41.
but: it works
Define 'works' ... ?
and: there is no info anywhere that it's not supported
there will be an information (tac-newsletter) from nokia soon that
r61 is
At 22:50 26.07.2006, you wrote:
hi,
r61 and ipso41 have been release about at the same time. so nokia
could not test r61 and checkpoint not ipso41.
but: it works
Define 'works' ... ?
no problems here ... running for several days now.
cheers
reinhard
--
Reinhard Stich [EMAIL
Check new added rules. I had a similar problem when i typed spanish
characters. Maybe you are using (not english) characters in rule names or
descriptions.
Hope it works!
GS
=
To set vacation, Out-Of-Office, or away messages,
send an email to
Well, you must be feeling good that you have such a unique problem no one
else has eer had it. :-)
I did notice such a post and it is odd that no one ever answered.
Ray
From: Motta Corrado [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
They just started requiring that because spam was making it on to the
boards. After you go into Discussion Groups, upper right just above the date
and time you'll see a Login/Join link.
Those things do have implied rules but I've never seen them documented.
Ray
From: Joe Matusiewicz [EMAIL
Hi There,
I am running NG AI R55 and have cluster setup as High Availability Legacy Mode.
Yesterday my primary firewall A failed and was taken over by firewall
B. I'm puzzled as to what happened. Where can I see the logs for this
kind of problems ?
Best Regards,
Fico
Hi Reinhard,
Assuming that it is working for http_mapped (I will test it later), what
about https
and ftp? My proxy server is microsoft proxy server so it supports http/https
and ftp.
Any comments? TIA
cisco4ng
Reinhard Stich [EMAIL PROTECTED] wrote:
hi,
this is possible
hi,
just have a look at the http_mapped service and you will know what to do ;-)
cheers
reinhard
At 03:11 27.07.2006, you wrote:
Hi Reinhard,
Assuming that it is working for http_mapped (I will test it
later), what about https
and ftp? My proxy server is microsoft proxy server so it
hi,
check the syslogs, you will see something there (interface down,
firewall-problem, etc)
cheers
reinhard
At 02:55 27.07.2006, you wrote:
Hi There,
I am running NG AI R55 and have cluster setup as High Availability
Legacy Mode.
Yesterday my primary firewall A failed and was taken over
23 matches
Mail list logo
