|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] CheckPoint RealSecure Intrusion detection Ver 5.0
Having done this myself recently, the set-up used was this: Box 1 The firewall Box 2 The realsecure sensor (has two cards, one is 'stealthed' Box 3 FW+ RS Management console Box 1 and Box 2's stealthed card in same VLAN utilising span on the switch so that all traffic to/from firewall is copied to the stealthed NIC on Box 2 Box 2's other card in VLAN with Box 3 which has the RS console... Key to this is that nothing is installed on the Firewall (Box 1) itself, but RS Console is installed on the Firewall-1 Manager (Box 3) Hope this helps Rob -----Original Message----- From: [email protected] [mailto:[email protected]] Sent: Thursday, November 23, 2000 10:46 To: Tim Cullen Cc: [email protected] Subject: RE: [FW1] CheckPoint RealSecure Intrusion detection Ver 5.0 I asked a question about this recently - it appears that the confusion is in that the Management Console for both fw and RS can reasonably reside on same box (firewall) but the RealSecure engine needs to be on different box ? i.e.:- Box 1 (NT/Nokia/Solaris(whatever):- Software = 1. Firewall-1(or VPN-1), 2. FW-1 Man. Console, 3. RealSecure Man. Console Box 2 (whatever):- Software = RealSecure Engine Does this look right Tim or would you not even run the Management Consoles on the same box - any other views ? Tim Higgins Tim Cullen <[email protected]> Sent by: To: [email protected] [email protected] cc: kpoint.com Subject: RE: [FW1] CheckPoint RealSecure Intrusion detection Ver 5.0 21/11/00 18:19 I'm sorry I am going to have to say this, Never, I will repeat, Never put anything on the firewall! The firewall should be a stand alone box with the only purpose in life of inspecting the incoming packets. -----Original Message----- From: Frank Darden [mailto:[email protected]] Sent: Monday, November 20, 2000 5:55 PM To: 'Hamlyn, Stewart'; [email protected] Subject: RE: [FW1] CheckPoint RealSecure Intrusion detection Ver 5.0 Importance: High Do not install RealSecure on the Firewall!! -----Original Message----- From: Hamlyn, Stewart [mailto:[email protected]] Sent: Monday, November 20, 2000 2:15 PM To: [email protected] Subject: [FW1] CheckPoint RealSecure Intrusion detection Ver 5.0 Hi, I installed CheckPoint RealSecure Ver 5.0 on a SUN running Solaris 2.6, 1GB memory, dual processors with CheckPoint 2000 FW-1 (SP2) and Floodgate-1 (SP2). It seems when the traffic load increased the server would core dump and reboot. I removed RealSecure Manager and the problem has gone away. Has anyone had problems like this with RealSecure or tried it and found that it works OK? Thanks in advance, Stew ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== #********************************************************************** This message is intended solely for the use of the individual or organisation to whom it is addressed. It may contain privileged or confidential information. If you have received this message in error, please notify the originator immediately. If you are not the intended recipient, you should not use, copy, alter, or disclose the contents of this message. All information or opinions expressed in this message and/or any attachments are those of the author and are not necessarily those of Hughes Network Systems Limited, including its European subsidiaries and affiliates. Hughes Network Systems Limited, including its European subsidiaries and affiliates accepts no responsibility for loss or damage arising from its use, including damage from virus. #********************************************************************** ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== STANDARD DISCLAIMER: This message is confidential. You should not copy it or disclose its contents to anyone. You may use and apply the information only for the intended purpose. Internet communications are not secure and therefore RM does not accept legal responsibility for the contents of this message. Any views or opinions presented are only those of the author and not those of RM. If this email has come to you in error please delete it and any attachments. ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
