[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] Re: license violation problem
The reason I got license exceeded is, spoofing attack from Internet. The spoofed packets pass thru firewall to the non-secure interface without the destination being translated, the firewall regards this as an protected host and log it against the license. The license was growing quickly and exceed the 250 limit. It was resolved by applying SP3. ----- Original Message ----- From: "Kenneth Lam" <[email protected]> To: <[email protected]> Sent: Thursday, May 24, 2001 4:48 PM Subject: license violation problem > I have a checkpoint firewall with 250 user license. I only have a few tens > machines, however I always get the "violation" alert. > > I have the external.if configured correctly, the policy rules configured > correctly. > > "fw lichosts" gives list of both internal src IP and external src IP > addresses on > internal interface coming from both secure & non-secure interfaces. > The destination address is to an NAT address of my BigIP virtual IP. > > my version is 4.1 SP0 (not patched) > > Any hints? is it a bug? being spoofed? Urgently need help, thx. > > > > ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|