[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] log authentication problem - urgent please help
I had to swap out the hardware on my pfm (Checkpoint 3.0b SP9 - NT4 SP5) so rebuilt a newer machine with the same NIC cards etc and all went well except that I cant get it to log back to the master. Snmp is okay, I can install a policy from the master to the pfm fine but just cant get the logging going back to the master. I can see the remote pfm is logging locally, so I copied the fw.log file to the master and opened it with the gui. I noticed straight away that the new firewall is somehow using a different NIC (and ip address as the origin). The interface it is using is no longer the internal interface which is closest to the master and I can also see the same ip address and log authentication failure in the NT event log on the master. Can anyone tell me why it would use a different interface for logging? The internal interface is the one that Checkpoint is licensed against and it is the ip address in the general tab on the firewall object which I load the policy to. Is there a fix or workaround - I have tried playing with fwputkeys etc but as I built the new platform and configured it the same I cant see how the firewall decides which address it uses for redirecting the log. Thanks in anticipation....Peter. ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|