[FW-1] Function in NG-R55?

Hi experts: We met a short question need your help. Some of request from our customer and I am not sure it could be support in our current version or not, our firewall version is NG-R55 and platform is IPSO3.8 IP740 customer request: 1. Network quota control?Venforce a

[FW-1] block file transfer in Instant Messenging like AOL, Yahoo and MSN while still allowing chat

SmartCenter is NG with AI R55w on Nokia IP530. Enforcement Module is Nokia IP650 with IPSO 3.7.1 build 024 with CP NG with AI R55w HFA_04. Everything behind the Nokia is hide NAT when going out to the Internet. Everything is working fine. I would like to block users behind the Nokia

Re: [FW-1] block file transfer in Instant Messenging like AOL, Yahoo and MSN while still allowing chat

You have an option in NGX smartdefense to block file transfer with MSN messenger over MSNMS and SIP. I haven't tested this. I don't see this option for the other messengers. -GS -Original Message- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of

Re: [FW-1] VPN - WAN links with : VPN-1 Edge device(s) - IPSO cluster (problem(s))

Is the edge running the latest firmware? -Original Message- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Mark Elsen Sent: Tuesday, August 15, 2006 8:58 AM To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM Subject: [FW-1] VPN - WAN links with : VPN-1

[FW-1] Couple of errors on distributed NGX installation

Afternoon all I have the following setup Management Station (private IP address) connected to a local firewall. The management station is also managing two remote firewalls in Pakistan and South Africa. I have two issues 1 - logs from the remote firewalls dont appear in the smarttracker for

[FW-1] VPN - WAN links with : VPN-1 Edge device(s) - IPSO cluster (problem(s))

We are trying to get a WAN-VPN link going between an office branch (VPN-1 Edge intended as perimeter device) and our main office (IPSO cluster on perimeter, ipso 4.0.1 + NGX R61). Although this being a native CP solution, we can't get it to work in a reliable mode. Reliable mode , I mean,

Re: [FW-1] VPN - WAN links with : VPN-1 Edge device(s) - IPSO cluster (problem(s))

Is the edge running the latest firmware? It is. M. = To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail

[FW-1] Multiple Internet Gateways Config

We are currently fully utilizing our existing internet connection, and my ISP has offered a solution of keeping our G.SHDSL connection of IPSEC tunnels, and adding an ADSL connection for internet browsing. How would I go about configuring my firewall for multiple gateways? I only have one

Re: [FW-1] Fail Install Policy

Hi, I have this same behavior, in two different sites. Firewall Message on policy install: Installation failed. Reason: Load on Module failed - no memory. In both of them, the issue was non-ASCII characters (like ç á ó é ã õ) in the NAME column of some rule, not in the name of the policy.

Re: [FW-1] VPN - WAN links with : VPN-1 Edge device(s) - IPSO cluster (problem

Do you have the Edge set up as managed by SmartCenter or an interoperable device? Managed seems much more stable. Ray From: Mark Elsen [EMAIL PROTECTED] Reply-To: Mailing list for discussion of Firewall-1 FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM To:

[FW-1] R60 CPHA broadcast traffic

Hi list, I have setup a CP R60 high availability new mode using clusterxl. I am just wondering if it is normal that there lots of broadcast traffic generating on all interfaces? Cheers, Clive = To set vacation, Out-Of-Office, or away messages,

Re: [FW-1] Questions on upgrading

I was able to obtain a hotfix for this from checkpoint (I was one of the original reporters and got it in front of developers). I only have it for windows and splat, you want HOTFIX_DAL_HFA03_222 or HFA04. -- Ted Serreyn Phone: 262-432-0260 Fax: 262-432-0232 Serreyn Network

Re: [FW-1] R60 CPHA broadcast traffic

Yes. UDP 8116 broadcast are necessary for cluster-status health checks, when a Check Point ClusterXL clustering solution is implemented. -GS -Original Message- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Clive Luk Sent: Tuesday, August 15, 2006

Re: [FW-1] R60 CPHA broadcast traffic

Thanks for your reply GS. I thought the UDP 8116 (CPHA) would only appear on the sync interface/between cluster members only. The CPHA broadcast traffic actually generating a lot of traffic on my LAN. Just wondering does that necessary to have broadcast to all network/interfaces? Thanks in

Re: [FW-1] block file transfer in Instant Messaging like AOL, Yahoo and MSN while still allowing chat

Cisco4ng, If you want to block these IM's completely you'll need to use that pain in the *ss of a SmartDefense. But to stop only the file transfers you can simply use a rule: Source: Internal LAN's Dest.: Internet Protocol groups: P2P_File_Sharing_Appications Messenger_Applications Action: