Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] Remote module not logging to mgnt server

To: Erin Young <[email protected]>
Subject: Re: [FW1] Remote module not logging to mgnt server
From: Matthias Leu <[email protected]>
Date: Thu, 17 May 2001 14:00:29 +0200
Cc: [email protected]
Organization: AERAsec Network Services and Security GmbH
References: <[email protected]>
Sender: [email protected]

Hi,
I assume the network connectivity is ok. If the FW is not logging to Management
(MM), different reasons are possible. Some are

- Authentication between FW and MM is not valid.
FW and MM authenticate themselves before accepting connections. First of all please
check, if at the FW the file $FWDIR/conf/masters is there. In it the IP-Address of
MM is written in plain text.
Second try to reinstall the authentication by these steps:
at FW do:
$FWDIR/bin/fw putkey -p (password) IP-MM
restart the FW by fwstop - fwstart
at MM do:
$FWDIR/bin/fw putkey -p (password) IP-FW
and then try to re-install the rulebase - if ok, the logs should also come to MM.

If you mix a NON-VPN Version with VPN or other encrypting products, you will have to
make changes in $FWDIR/lib/control.map.

- Stealth-rule and having "Accept FW-1 Control connections" disabled in
Policy/Properties/SecurityPolicy
You will have to accept a connection from FW to MM, so put a rule before the
stealth-rule:
FW   MM    FW1_log   Accept ...

Hope it helps,
best regards
Matthias


Erin Young wrote:

> I have built a new FW(NT 4.0 SP6a w/FW-1 4.1 sp3)that is being managed by a
> seperate server. The problem is the FW logs from the remote server are not
> being logged to the management server. The server managing the remote FW
> module is a FW Module/Management server (NT 4.0 sp6a w/FW-1 4.1 sp3. Any one
> have any idea of what is happening???
> _________________________________________________________________
> Get your FREE download of MSN Explorer at http://explorer.msn.com
>
> ================================================================================
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
> ================================================================================

begin:vcard 
n:Leu;Dr. Matthias 
tel;cell:tel;fax:+49 8102 895 199
tel;work:+49 8102 895 190
x-mozilla-html:FALSE
url:http://www.aerasec.de
org:AERAsec Network Services and Security GmbH
adr:;;Wagenberger Strasse 1;D-85662;Hohenbrunn;;
version:2.1
email;internet:[email protected]
fn:Dr. Matthias Leu
end:vcard

References:
- [FW1] Remote module not logging to mgnt server
  - From: "Erin Young" <[email protected]>

Prev by Date: RE: [FW1] How to know the duplex and speed setting of Solaris NIC ??
Next by Date: RE: [FW1] SecureRemote and Windows 2000
Previous by thread: [FW1] Remote module not logging to mgnt server
Next by thread: RE: [FW1] How to know the duplex and speed setting of Solaris NIC ??
Index(es):
- Date
- Thread