[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] Session authentication alert/error
I have a problem and was wondering if someone could help me out. I have a CP 4.1 NT box with a perm 50 user lic and a temp (30 day) unlimited lic. Everything was working fine until last week or so when several users could not access http from the internet. Upon inspection i found that the sesson auth agent was failing to validate fw-1 user id's that had a specified "from" and "to" network. A temporary solution seemed to be deleting the fwd.hosts file. Everything worked for about a day and then it blew up again. Fw-1 users that did not have a "from" or "to" net defined (ie any, any) were unaffected and are allowed to all urls's. My rule looks like this. # SRC DST SERVICE Action 19 all users@any any http https pop-3 ftp session auth Session auth properties are: Src. intersect with user DB Dest. intersect with user DB Contact agent at . SRC No policy server The alerts im getting when a user fails to connect with the session agent is: Rule 19 Connection to session agent failed, and User is not in the right group For example i have 2 users: admin src: any dst: any user1 src: valid_nets dst: .americanexpress.com .epx.com Could this be a licensing issue? Why is the admin user unaffected by this? ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|