[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW1] Remote module not logging to mgnt server
Hi, I assume the network connectivity is ok. If the FW is not logging to Management (MM), different reasons are possible. Some are - Authentication between FW and MM is not valid. FW and MM authenticate themselves before accepting connections. First of all please check, if at the FW the file $FWDIR/conf/masters is there. In it the IP-Address of MM is written in plain text. Second try to reinstall the authentication by these steps: at FW do: $FWDIR/bin/fw putkey -p (password) IP-MM restart the FW by fwstop - fwstart at MM do: $FWDIR/bin/fw putkey -p (password) IP-FW and then try to re-install the rulebase - if ok, the logs should also come to MM. If you mix a NON-VPN Version with VPN or other encrypting products, you will have to make changes in $FWDIR/lib/control.map. - Stealth-rule and having "Accept FW-1 Control connections" disabled in Policy/Properties/SecurityPolicy You will have to accept a connection from FW to MM, so put a rule before the stealth-rule: FW MM FW1_log Accept ... Hope it helps, best regards Matthias Erin Young wrote: > I have built a new FW(NT 4.0 SP6a w/FW-1 4.1 sp3)that is being managed by a > seperate server. The problem is the FW logs from the remote server are not > being logged to the management server. The server managing the remote FW > module is a FW Module/Management server (NT 4.0 sp6a w/FW-1 4.1 sp3. Any one > have any idea of what is happening??? > _________________________________________________________________ > Get your FREE download of MSN Explorer at http://explorer.msn.com > > ================================================================================ > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================================================ begin:vcard n:Leu;Dr. Matthias tel;cell:tel;fax:+49 8102 895 199 tel;work:+49 8102 895 190 x-mozilla-html:FALSE url:http://www.aerasec.de org:AERAsec Network Services and Security GmbH adr:;;Wagenberger Strasse 1;D-85662;Hohenbrunn;; version:2.1 email;internet:[email protected] fn:Dr. Matthias Leu end:vcard
|