Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] Enterprise - slave configuration question

To: <[email protected]>, <[email protected]>
Subject: Re: [FW1] Enterprise - slave configuration question
From: "Robert MacDonald" <[email protected]>
Date: Sat, 09 Dec 2000 09:25:56 -0500
Sender: [email protected]

Peter,

I've been busy on projects here, and have just
started looking through my backlog of messages.
Have you solved this yet?

The password it's asking for is to allow safe communications
(authentication)between the fwmgr and the fwmodule.
These need to match on both systems A & B.

On both systems, do the following:

Verify that the time is correct for both systems.

On FW A and FW B
fwstop

On FW A
fw putkey -p {password} fwB_IP

On FW B
fw putkey -p {password} fwB_IP

On FW A and FW B
fwstart

When FW B contacts FWmgr A, it will ask
for it's policy, if all else is OK, FWmgr A will
send over the correct policy.

Robert

- -
Robert P. MacDonald, Network Engineer
Team Lead, e-Business Infrastructure
G o r d o n   F o o d    S e r v i c e
Voice:email: [email protected]

>>> "Peter Kassies" <[email protected]> 12/6/00 6:20:06 PM >>>
>
>Hello,
>
>I have the following configuration:
>
>Server A with an enterprise edition 4.0 of Checkpoint FW1. It has a firewall
>management module and an inspection module running on it. I also have server
>B with only a inspection module running on it.
>
>My problem is that I'm unable to insert a rulebase into server B.
>
>I've done the following:
>
>On server B (sun solaris 2.7):
>- Installed the inspection module on server B
>- run fwconfig and told server B where to download the rulebase
>(it asks me for a password, but I have no clue what it will do with it.)
>
>On server A (sun solaris 2.7)
>- installed server B as an object into the management module of server A.
>(server B object is a Host with FW1 software installed on it.)
>
>- now I create an new rulebase with an empty rule with any - any - any -
>accept and logging on.
>- I select install (it shows me two possible objects to install (server A
>and server B)
>- I select server B
>
>Error: resource unavailable.
>
>Hmm, what is happening here? I can ping server B from server A.
>When I started server B, it tried to collect the rulebase from server A, but
>failed.
>
>How does server B know what rulebase to collect? Does it look for a name?
>
>Any pointers into the right direction are greatly appreciated.
>
>Peter




================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: RE: [FW1] Port 1024 Unknown Established TCP Packets
Next by Date: RE: [FW1] SecureRemote and WINS
Previous by thread: [FW1] Enterprise - slave configuration question
Next by thread: [FW1] Nokia routing and NAT question
Index(es):
- Date
- Thread