Mine is about five seconds. 1.7 GHz laptop with 1 GB of RAM. How many hops
are you away from the actual SmartCenter server?
Ray
From: sin [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST
If you're using implied rules, try http://externalIP:18264 right now. :-)
Ray
From: Sascha Picchiantano [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1
They're still going to have the same problem, but maybe their Juniper
salesperson told them something else. :-)
Ray
but the customer is going to drop Checkpoint in favor of Juniper in a
couple of weeks and not willing to buy anymore new licenses
details, the opinions might be more relevant.
Take care,
Ray
_
Invite your Hotmail contacts to join your friends list with Windows Live
Spaces
http://clk.atdmt.com/MSN/go/msnnkwsp007001msn/direct/01/?href=http://spaces.live.com
One magazine article said the hardware + software cost was the same as the
software-only cost, so you were effectively getting the hardware for free.
Ray
From: sin [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
for us mere non-CSP mortals. :-)
http://www.checkpoint.com/downloads/latest/hfa/vpn1_power/index.html
Ray
_
Dont miss your chance to WIN 10 hours of private jet travel from Microsoft®
Office Live http://clk.atdmt.com/MRT/go
if you
disable the Windows Firewall service, it will turn it back on at times. For
instance, if you use the Find a WLAN feature, it will turn on a disabled
Windows Firewall.
Ray
From: Ken Cameron [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST
on a
new IP address and put the NetScreen box either behind it or in parallel.
Is the NetScreen IPSec or PPTP?
Ray
From: Rajesh Yashwantrao [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST
I don't know he answer to this one, but I seem to recall you were running
some FP3 installations awhile back. If you still are, you might want to look
at this page:
http://www.checkpoint.com/services/lifecycle/support_periods.html
It shows FP3 goes off support in June 2007.
FWIW,
Ray
as hotfixes are concerned. I think R60
HFA05 had just under 100 fixes in it, but none of them looked like
show-stopper fixes for me.
Ray
_
The average US Credit Score is 675. The cost to see yours: $0 by Experian.
http
There's an SK article on this from a few weeks ago. There's currently no
workaround other than Monitor Only or disabling it. There's supposed to be
an update to SmartDefense coming to fix it.
Ray
From: Mark Topper [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
.
Ray
From: Gary Freeman [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] How can I review CPFW configurations
Date: Wed, 7 Mar 2007 15:32:48 -0500
I need
termination. I think there's a
VPN Accelerator card now that supports SSL, which would also help Visitor
Mode performance.
Ray
_
Mortgage rates as low as 4.625% - Refinance $150,000 loan for $579 a month.
Intro*Terms
https://www2
firewall, I would have bought a Pix. :-)
Ray
From: Anderson, Brian [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] R60 with HFA or upgrade to NGX R62
I'm running a Nokia IP530, which is a 700 MHz P-III with 1 GB of RAM. I have
10 M/bps of bandwidth and 1,500 users and Floodgate does not come anywhere
close to overtaxing the box. I'd say you're OK. :-)
Ray
From: Debra James [EMAIL PROTECTED]
Reply-To: Mailing list for discussion
notes say otherwise and was told that development confirmed that IPSO 4.2
is the only version where they support R62.
Methinks there are some hard feelings going on between Check Point and Nokia
now that Check Point has their own hardware line and it is not manufactured
by Nokia.
Ray
From
Sorry for the public post, folks.
---
Cesar, I replied to your email but it got bounced as
This is an automatically generated Delivery Status Notification.
Delivery to the following recipients failed.
Cesar.Luna@deleted-for-anti-spam-by-Ray
Can you
USA DST compliant.
Ray
_
Rates near 39yr lows! $430K Loan for $1,399/mo - Paying Too Much? Calculate
new payment
http://www.lowermybills.com/lre/index.jsp?sourceid=lmb-9632-18226moid=7581
FWIW, my IPSO 3.9 build 56 box is showing the correct DST time, without
applying this fix.
Ray
_
Play Flexicon: the crossword game that feeds your brain. PLAY now for FREE.
http://zone.msn.com/en/flexicon/default.htm?icid
additional management features.
NAC is also a key part of the new release.
Ray
_
Rates near 39yr lows! $430K Loan for $1,399/mo - Paying Too Much? Calculate
new payment
http://www.lowermybills.com/lre/index.jsp?sourceid=lmb-9632
customer needs to start looking for a new firewall vendor. Fast.
Bandwidth is cheap compared to manually creating thousands of CD's, mailing
them and listening to customer complaints.
Thanks for winding me up, Bill. :-)
Ray
users from
asking for clarification) or whether forum posts should be dumped to the
email list.
The latter would be better but the posts that originate in the forum would
have to be flagged somehow so they do not get picked up by the list
monitoring and duplicated in the forum.
Ray
From
am now
creating a new Google Sitemap and pinging Google nightly with it, so
hopefully that situation will be remedied.
-- PhoneBoy
--
Ray
_
Get a FREE Web site, company branded e-mail and more from Microsoft Office
work for the end users, however the minimize to tray feature of
the SSL Network Extender no longer works. It just minimizes to the task bar.
Did you limit admin access to certain IP addresses?
Ray
From: Syed Abdul Hameed [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
?
Ray
From: Syed Abdul Hameed [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] Connectra NGXR62 not responding through its web
interface after first
file) for future upgrades and HFA installations. See sk32624 for
the full details.
Ray
From: Christopher McGill [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
You can just open a support case and they'll give it to you. I do that
often. If Check Point wants to restrict the self-help abilities of their
customers, that's their business. I'll just get them to burn some of their
support staff's time instead.
Ray
From: Christopher McGill [EMAIL
Hmmm, I don't see it. That command should only be a line or two.
Ray
From: Tauseef Khan [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] hfa19
Date
policy, the connection will remain active until it ends itself.
Ray
From: Christopher McGill [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] URGENT
Interestingly, I installed R62 SPLAT on an ancient IBM Netfinity 300 today
(Pentium II 300 MHz with 256 MB of RAM) for messing around with. The SPLAT
CD told me that all of the hardware was compatible and it even runs!
Ray
From: pkc_mls [EMAIL PROTECTED]
Reply-To: Mailing list
Nice job, Gil, thanks. And it's even nicer to browse the web forums and see
Check Point employees responding there. The explanation regarding a problem
with SmartDefense DNS checks taught me several new things.
Ray
From: Gil Sudai [EMAIL PROTECTED]
Reply-To: Mailing list for discussion
while in the office. I've never used SDL in production because I don't
believe in allowing remote access with just a user name and password.
Ray
From: Sergio Alvarez [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
. You might want to
plan on getting off of it. The R55 series goes unsupported in June 2008
while IPSO 3.8 goes unsupported on December 7, 2007. IPSO 3.8.1 goes end of
life on June 17, 2008.
HTH,
Ray.
From: Tauseef Khan [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
Well, thank you, Hugo. I always wondered why that version popped into
existence.
Ray
From: Hugo van der Kooij [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject
Suite NGX R63
Connectra NGX R62CM
UTM-1 NGX R62
or look at sk32631 for how to download an updated time zone file.
Otherwise you'll probably need to open a support case.
Ray
From: Torkel Mathisen [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST
care,
Ray
From: Thomas Nilsen [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] NGX RX65 and Edge VPN troubles
Date: Tue, 10 Apr 2007 12:26:46 +0200
and sends the
firewall logs over.
Cross your fingers.
Ray
From: Ian Collins [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] Checkpoint express - mysql
Are these SecurRemote/SecureClient users? If so, the firewall can be set to
automatically renew the certificates as they get close to expiration. I've
got mine set to 90 days before and it works well.
I do not know the answer to your specific question, sorry.
Ray
From: pkc_mls [EMAIL
as a regular user, SNX auto-launches but hangs
forever on Connecting
Any thoughts would be greatly appreciated. Security hotfix 5 for Connectra
is installed.
Thanks,
Ray
_
Dont quit your job Take Classes Online and Earn your Degree in 1
for ID 7030. sigh
Ray
From: Ray [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] Connectra NGX R62 on Vista - SNX woes
Date: Thu, 19 Apr 2007 22:03:51
as
it would on XP.
I did an SK article search on Vista and saw an article about how to get the
ActiveX controls installed, which worked. I didn't see anything on SNX
specifically.
It sort of sounds like it's not quite ready for Vista yet.
Thanks again,
Ray
From: David DeSimone [EMAIL
list other IPSO versions
as compatible.
Obviously it would be a good thing to pick a version of FW-1 and IPSO that
both vendors agree are supported. :-)
Ray
From: Sascha Picchiantano [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST
Are you sure you got them for R62? I never found any with SmartUpdate R62
and I had to manually add them from the CD.
Ray
From: Jeremy Lieb [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST
Maybe that was a mistake and they fixed it. :-)
Ray
From: Jeremy Lieb [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] No packages available
if it matches.
You might be able to do it with the HTTP security server, I don't know, but
the performance hit would be terrible.
Take care,
Ray
From: Bill Smith [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1
, BTW.
Ray
From: pkc_mls [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] secureclient NG / vpn1 NGX compatibility
Date: Thu, 24 May 2007 10:05:51 +0200
Hi
Does anyone know of a North American vendor who might have a 256 MB stick or
two of memory for an IP530? I need to make one last another year and it
needs at least another 256 MB.
Or if this thing will take non-Nokia memory?
Thanks,
Ray
This is the one that supports Vista.
http://www.checkpoint.com/downloads/quicklinks/downloads_sr.html
Ray
_
Make every IM count. Download Messenger and join the im Initiative now.
Its free. http://im.live.com/messenger/im/home
sending the syslogs, but I don't have a syslog or OSE product entry
in Product to filter on. I also cannot see that the syslog process is
running on the SmartCenter.
Ray
From: O'Flynn, Derek [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST
Thanks to everyone who responded. Now I've got a little more info to work
with.
Ray
From: Ray [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] Need
are greatly appreciated.
Thanks,
Ray
_
PC Magazines 2007 editors choice for best Web mailaward-winning Windows
Live Hotmail.
http://imagine-windowslive.com/hotmail/?locale=en-usocid=TXT_TAGHM_migration_HM_mini_pcmag_0507
responses,
Ray
From: Tom louis [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] Tracking down anti-spoof source?
Date: Mon, 11 Jun 2007 12:34:16 -0400
Thanks Jim and all.
I'll get the switch folks on it.
Ray
From: Jim Johnson [EMAIL PROTECTED]
To: 'Mailing list for discussion of Firewall-1'
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
CC: [EMAIL PROTECTED]
Subject: RE: [FW-1] Tracking down anti-spoof source?
Date: Mon, 11 Jun 2007 14:09:01
It does help, thank you.
Ray
From: doc Master [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] Tracking down anti-spoof source?
Date: Thu, 14 Jun
a
SecureClient for the Mac license installed. The Windows license won't work.
Do you have the Mac license?
Ray
From: Tony Montesano [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST
Too bad. It would have been an easy fix. :-)
Ray
From: Tony Montesano [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] MAC OS X 10.4.8 high CPU
of useless, I think.
Ray
From: John Lindblom [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] clientless vpn
Date: Thu, 21 Jun 2007 08:39:02 -0500
256 MB is not enough memory. It will run but it will be out of RAM before it
passes any traffic. Increasing it to 512 MB will make a big difference, even
with only 1.5 M/bps of bandwidth.
Ray
From: Alvaro Gastambide [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
while using an R62 SmartCenter.
Ray
From: Torkel Mathisen [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] Eventia Suite R65
Date: Wed, 27 Jun 2007 14:31:58
You're back to cpconfig on the ER box to define the admins. Leastwise that's
what I did on my R63 ER box.
Ray
From: Torkel Mathisen [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST
://my.firewall at the same time he or she was connected to a malicious
Website, according to the company's patch release information.
I agree with their medium rating in the article.
Ray
_
Who's that on the Red Carpet? Play win glamorous
One place is forums.checkpoint.com in the Security - Miscellaneous section.
They echo this mailing list there. There's 2,500+ messages there going back
to Jan. 1, 2006.
Ray
From: Sean Donaghey [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1
Did you mean R60 HFA02? I don't think R62 has any HFA'a out yet. R61 has
HFA01 out. Both seem to be OK.
R60 HFA05 is the most current as far as (non-CSP) hotfixes go. Both R60
HFA01 and R62 are supposed to be the HFA equivalent of R60 HFA04.
Ray
From: Alan Choyna [EMAIL PROTECTED]
Reply
Ten fixes, including SSL Network Extender support for Vista.
Ray
_
http://imagine-windowslive.com/hotmail/?locale=en-usocid=TXT_TAGHM_migration_HM_mini_pcmag_0507
=
To set vacation
These folks are in Cleveland with their Check Point Essentials class:
http://www.hurricanelabs.com/CPE_2005.pdf
Ray
From: Kim Longenbaugh [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST
Make sure the libsw files are correct. I've seen where installing an HFA
downgraded the libsw files.
Ray
From: no-need to-list [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST
What version and HFA level of FW-1? There were significant SIP improvements
put into R65.
Ray
From: Ansar Mohammed [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
for it myself.
and ssl network extender requires a license.
Correct.
Ray
_
A new home for Mom, no cleanup required. All starts here.
http://www.reallivemoms.com?ocid=TXT_TAGHMloc=us
http://www.checkpoint.com/downloads/latest/hfa/vpn1_power/index.html#NGX%20R61
Oddly, there are only 65 fixes. I was expecting to see the 100 or so from
R60 HFA05.
Ray
_
Booking a flight? Know when to buy with airfare
server to
allow FTP downloads but block all except a group from performing FTP
uploads.
Ray
From: cisco4ng [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW
topology update interval from the default to 1
hour. That will assure changes like these get pushed to the clients at their
next logon. The userc.C file is only 1K or so, so there is no bandwidth
issue.
Ray
From: sin [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
little that it
doesn't count.
Seems to me it does it at half of whatever you set and keeps trying if that
one fails so it makes sure it's done by the interval you set.
Ray
From: sin [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST
to protect this kind of stuff. FW-1 can't do
SSL termination, which severely limits its inspection ability.
Apparently there used to be an add-in OPSEC card that did allow FW-1 to do
SSL inspection, but the vendor got bought out late last year and the product
was discontinued.
Ray
From
What type of computer and NIC? This can indicate a problem with the drivers
where the SecureClient virtual NIC is not biinding properly with it.
What version and HFA of SecureClient?
Ray
From: john maverick [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
for it yet.
Ray
From: Marcos Carneiro da Rocha [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] benefits of upgrading to NGx R65 versus R60, R61 or R62
subnets in an encryption domain. For example, if you have
172.16.17.0/24 and 172.16.18.0/25 defined, FW-1 will send its topology to
the other side as 172.16.17.0/23, which Cisco devices really, really hate if
they're not set up for it that way. The above change will stop that
behavior.
Ray
From
Oddly, I need to do that as well and was looking for the same info. The only
thing I read was that when you convert it, it actually creates a brand new
policy that you can tweak until it works right. If that is accurate, it
should be relatively painless.
Ray
From: Christian Franke [EMAIL
Try running a cpstop and a cpstart on the SmartCenter. If the certificate is
expired, that should renew it. You'll get a note about a new fingerprint if
this is what's going on.
Ray
From: r locus [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1
on the firewall
object, save the firewall object, open the firewall object, re-check VPN,
save the firewall object and push the policy.
Ray
From: Richard Newton [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1
Great! Thanks for the follow-up note,
Ray
From: Richard Newton [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] Problem renewing SecuRemote
expire.
Ray
From: John Lindblom [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] Problem renewing SecuRemote certificate
Date: Tue, 4 Sep 2007 08:43
on the SmartCenter to authorize the certificate and to turn on
the interface. Then you go to https://SmartCenterIP:18265 and you have a
browser interface to the entire certificate authority with access
authenticated by the admin certificate you created. You can search, renew,
create, whatever.
Ray
+ servers) but
we would never consider it for the firewalls. Using the vendor-supplied OS
promotes stability and reliability with these specialized applications
called firewalls.
Ray
From: Jeremy Lieb [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1
by
partial DN, like a last name that's part of a certificate name.
Ray
From: John Lindblom [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] Problem
What version of FW-1 are you using?
Ray
From: Sebastian Arriada [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] Nat: port allocation
Date: Fri, 14 Sep
except for known sources, etc.)
Ray
From: cisco4ng [EMAIL PROTECTED]
Reply-To: Mailing list for discussion of Firewall-1
FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] Checkpoint and Microsoft ISA (aka proxy) server
http://www.hurricanelabs.com - Their only commercial product is Check Point
and they now have something like 80% of the market in the northern half of
Ohio since they went into business (three years ago, I think)
Ray
From: Rick Osterberg [EMAIL PROTECTED]
Reply-To: Mailing list
SA-2000 which I find
far more flexible. In addition, the SA-2000 can have a WebEx-like meeting and
remote desktop function if you license for it.
I do miss not having the logs integrated into the SmartCenter, which is one of
the main reasons I bought Connectra at the last job.
Ray
Date: Wed
, but the particular product
was not detected.
At the new job I haven't had that issue at all. Juniper provides a file that
you import to add new AV and firewall vendor product support. No upgrade
needed.
Ray
Date: Thu, 27 Sep 2007 08:15:54 -0500
From: [EMAIL PROTECTED]
Subject: Re: [FW-1] Connectra
to a meeting and AD for internal users doing meetings.
The Mac and Linux support is somewhat limited because there is no built-in host
checking functionality. You have to jump through some hops to get Microsoft RDP
working on a Mac, but it does work.
Ray
Date: Fri, 28 Sep 2007 10:39:03 +0300
From
http://www.theregister.co.uk/2007/10/03/check_point_pentest/ - I glanced
through it and it looks like you have to have a bad admin, and if you've got
that it's game over anyway.
Ray
_
Help yourself to FREE treats served up daily
existing connections will not take effect until the
existing connection ends. So if you're trying to block an ongoing attack, it
may not work as you think it should. Rematch does not have this problem.
Ray
Date: Mon, 8 Oct 2007 13:09:26 +0100
From: [EMAIL PROTECTED]
Subject: [FW-1] high cpu
well.
Ray
Date: Tue, 9 Oct 2007 05:14:01 -0700
From: [EMAIL PROTECTED]
Subject: Re: [FW-1] smart defence service and ddos attacks
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
at my previous job, we did a stress test on Nokia IP2260 (2GB ram box)
on NGx R61 with HFA_01 by turning on all
56 fixes.
Ray
_
Climb to the top of the charts! Play Star Shuffle: the word scramble
challenge with star power.
http://club.live.com/star_shuffle.aspx?icid=starshuffle_wlmailtextlink_oct
We use RSA SecurID with a Juniper SA-2000 for remote access.
I did use Check Point ICA certificates with a Connectra R62 box in my previous
job.
As long as you stay away from plain old user name and password, you'll be in a
lot better shape almost regardless of what you use.
Ray
Date: Fri
SmartView Reporter to generate the reports. I'm not sure how you would
do it manually.
Ray
Date: Fri, 19 Oct 2007 13:22:59 +0300
From: [EMAIL PROTECTED]
Subject: [FW-1] Performance effect of track Account
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
What is the performance effect of using
,
Ray
_
Help yourself to FREE treats served up daily at the Messenger Café. Stop by
today.
http://www.cafemessenger.com/info/info_sweetstuff2.html?ocid=TXT_TAGLM_OctWLtagline
=
To set
I believe the last two posts, from Melipa and DannTro, were regarding issues
with the public release.
Ray
All I saw in the post was a remark that HFA-01 as earlier provided to
CSP's was not alright. No one reported issues with the normal HFA-01 as
far as I can read in that posting
-and-dime behavior really sours
management on their products.
Ray
_
Boo! Scare away worms, viruses and so much more! Try Windows Live OneCare!
http://onecare.live.com/standard/en-us/purchase/trial.aspx?s_cid=wl_hotmailnews
Yep, you read it right. Six fixes, including that local privilege one.
Ray
_
Climb to the top of the charts! Play Star Shuffle: the word scramble
challenge with star power.
http://club.live.com/star_shuffle.aspx?icid
601 - 700 of 943 matches
Mail list logo
