Hi experts:
We met a short question need your help. Some of request from our
customer and I am not sure it could be support in our current version or
not,
our firewall version is NG-R55 and platform is IPSO3.8 IP740
customer request:
1. Network quota control?Venforce a
SmartCenter is NG with AI R55w on Nokia IP530. Enforcement Module is Nokia
IP650 with IPSO 3.7.1 build 024 with CP NG with AI R55w HFA_04.
Everything behind the Nokia is hide NAT when going out to the Internet.
Everything
is working fine. I would like to block users behind the Nokia
You have an option in NGX smartdefense to block file transfer with MSN
messenger over MSNMS and SIP. I haven't tested this. I don't see this
option for the other messengers.
-GS
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf Of
Is the edge running the latest firmware?
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf Of Mark
Elsen
Sent: Tuesday, August 15, 2006 8:58 AM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] VPN - WAN links with : VPN-1
Afternoon all
I have the following setup
Management Station (private IP address) connected to a local firewall.
The management station is also managing two remote firewalls in Pakistan and
South Africa.
I have two issues
1 - logs from the remote firewalls dont appear in the smarttracker for
We are trying to get a WAN-VPN link going between
an office branch (VPN-1 Edge intended as perimeter device) and
our main office (IPSO cluster on perimeter, ipso 4.0.1 + NGX R61).
Although this being a native CP solution, we can't get it to work
in a reliable mode.
Reliable mode , I mean,
Is the edge running the latest firmware?
It is.
M.
=
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
We are currently fully utilizing our existing internet connection, and my
ISP has offered a solution of keeping our G.SHDSL connection of IPSEC
tunnels, and adding an ADSL connection for internet browsing.
How would I go about configuring my firewall for multiple gateways? I
only have one
Hi,
I have this same behavior, in two different sites.
Firewall Message on policy install:
Installation failed. Reason: Load on Module failed - no memory.
In both of them, the issue was non-ASCII characters (like ç á ó é ã õ) in the
NAME column of some rule,
not in the name of the policy.
Do you have the Edge set up as managed by SmartCenter or an interoperable
device? Managed seems much more stable.
Ray
From: Mark Elsen [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To:
Hi list,
I have setup a CP R60 high availability new mode using clusterxl. I am just
wondering if it is normal that there lots of broadcast traffic generating on
all interfaces?
Cheers,
Clive
=
To set vacation, Out-Of-Office, or away messages,
I was able to obtain a hotfix for this from checkpoint (I was one of the
original reporters and got it in front of developers).
I only have it for windows and splat, you want HOTFIX_DAL_HFA03_222 or
HFA04.
--
Ted Serreyn Phone: 262-432-0260 Fax: 262-432-0232
Serreyn Network
Yes. UDP 8116 broadcast are necessary for cluster-status health checks,
when a Check Point ClusterXL clustering solution is implemented.
-GS
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf Of Clive
Luk
Sent: Tuesday, August 15, 2006
Thanks for your reply GS.
I thought the UDP 8116 (CPHA) would only appear on the sync
interface/between cluster members only. The CPHA broadcast traffic actually
generating a lot of traffic on my LAN. Just wondering does that necessary to
have broadcast to all network/interfaces?
Thanks in
Cisco4ng,
If you want to block these IM's completely you'll need to use that pain
in the *ss of a SmartDefense. But to stop only the file transfers you
can simply use a rule:
Source: Internal LAN's
Dest.: Internet
Protocol groups: P2P_File_Sharing_Appications Messenger_Applications
Action:
15 matches
Mail list logo