[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] State Table
Do fwstop, then type 1. fw tab -t connections -u adn 2. modinfo | grep FW. You can try the same after you do the fw unload localhost. Let me know what you see. George -----Original Message----- From: Chris Arnold [mailto:[email protected]] Sent: Tuesday, May 22, 2001 8:33 AM To: 'Amin Tora'; '[email protected] ' Subject: RE: [FW1] State Table "fwstop" is quite different from "fw unload localhost." The first terminates fwd, fwm, fwalert and any other associated FW-1 processes (security servers) and removes the kernel module. It's just a script so you can read through it. The latter simply unloads the current applied policy from the localhost and leaves fwd running with no policy. Chris -----Original Message----- From: Amin Tora [mailto:[email protected]] Sent: Monday, May 21, 2001 12:21 AM To: '[email protected] ' Subject: RE: [FW1] State Table The state tables are CLEARED if you stop the firewall or unload your policies. You can prove this... On a test firewall module: run $FWDIR/bin/fw tab -t connections -u {displays contents of state table} run $FWDIR/bin/fwstop OR $FWDIR/bin/fw unload localhost run $FWDIR/bin/fw tab -t connections -u Amin Tora, CISSP ePlus Technology http://www.eplus.com NASDAQ: PLUS >-----Original Message----- >From: Chris Arnold [mailto:[email protected]] >Sent: Saturday, May 19, 2001 8:46 AM >To: 'Juppunov, George '; '[email protected] ' >Subject: RE: [FW1] State Table > >Not true. Think about it...if you shutdown the FW service, the state tables >are gone. Why would the underlying OS hold some data structure in memory >just in case the service that created it decides to respawn? > >Chris > >>-----Original Message----- >>From: Juppunov, George >>To: [email protected] >>Sent: 5/17/01 6:47 PM >>Subject: RE: [FW1] State Table >> >>Your connections will be "suspended", and dropped after the timeout >>expires. >>In other words you can stop and start your firewall in the middle of the >>day without >>impacting production. >> >>George ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== ============================================================================ ==== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ============================================================================ ==== _____________________________________________________________________ IMPORTANT NOTICES: This message is intended only for the addressee. Please notify the sender by e-mail if you are not the intended recipient. If you are not the intended recipient, you may not copy, disclose, or distribute this message or its contents to any other person and any such actions may be unlawful. Banc of America Securities LLC("BAS") does not accept time sensitive, action-oriented messages or transaction orders, including orders to purchase or sell securities, via e-mail. BAS reserves the right to monitor and review the content of all messages sent to or from this e-mail address. Messages sent to or from this e-mail address may be stored on the BAS e-mail system. ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|