NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW1] Anti-spoofing, loading rules and license problem



John,

Can you reproduce the result of fw printlic (please remove the IP address /
host id)  and tell me how many hosts you have behind each interface?


Best regards

Aylton
----- Original Message -----
From: <[email protected]>
To: <[email protected]>
Sent: Thursday, May 31, 2001 8:31 AM
Subject: [FW1] Anti-spoofing, loading rules and license problem


>
> Had a strange situation yesterday on a FW-1 4.0 on HP-UX 10.20 running
both
> FW-1 managment module and FW-1 gateway module.
>
> The firewall have one connection to the internet, one to our internal
> network and three DMZ zones.
>
> For each DMZ interface, I changed the property settings:
>
>   Old setting: Valid addresses: Any + Spoof Tracking: None
>   New setting: Valid addresses: This net + Spoof tracking: Log
>
> Then I reinstalled and lost connection. I ran the GUI from the internal
> network.
>
> At the HP consol I took a "fwstop" and then a "fwstart". It failed to load
> the ruleset. I then took a "shutdown -r now". When FW-1 was starting, it
> complained that there was too many internal hosts - only 25 was allowed,
and
> it came with a dump of IP-addresses. And it could not load the ruleset.
>
> We have a unlimited license on this machine.
>
> After reboot, I manually edited objects.C and reset the interface
properties
> for the three DMZ interfaces to "Valid addresses: Any" and then compiled
and
> loaded the ruleset without any problems. I also rebooted the machine and
it
> did not longer complain about too many internal hosts.
>
> This sounds like a bug in the software? Comments?
>
> ---
> Jørn Yngve Dahl-Stamnes
> EDB Teamco, Trondheim
> [email protected]
>
> > -----Original Message-----
> > From: Mika Napari [mailto:[email protected]]
> > Sent: 17. mai 2001 13:04
> > To: [email protected];
> > [email protected]
> > Subject: RE: [FW1] SecureRemote and Windows 2000
> >
> >
> > Hi,
> >
> > I think you have wrong version of SecuRemote.
> > You should use:
> > VPN+Des SecuRemote 4.1 build 4176 for Windows 2000 or
> > VPN+Strong SecuRemote 4.1 build 4176 for Windows 2000
> >
> > which you can download from
> > http://www.checkpoint.com/techsupport/freedownloads.html
> >
> > --
> > Mika Napari / Siemens / IT Service
> > email: [email protected]
> > tel: +358 10 511 5151
> >
> >
> > > -----Original Message-----
> > > From: [email protected]
> > > [mailto:[email protected]]On Behalf Of
> > > [email protected]
> > > Sent: 16. toukokuuta 2001 13:01
> > > To: [email protected]
> > > Subject: [FW1] SecureRemote and Windows 2000
> > >
> > >
> > >
> > > I'm trying to install SecureRemote on Windows 2000. But I get
> > > this message:
> > >
> > >
> > > Incompatible NT
> > > Version SP4 or higher required
> > >
> > > I'm installing from CheckPoint 2000 Enterprice Suite (version 4.1).
> > >
> > > Isn't SecureRemote supported under Windows 2000?
> > >
> > > ---
> > > Jørn Yngve Dahl-Stamnes
> > > EDB Teamco, Trondheim
> > > [email protected]
> > >
> > >
> > > ==================================================================
> > > ==============
> > >      To unsubscribe from this mailing list, please see the
> > instructions at
> > >                http://www.checkpoint.com/services/mailing.html
> > > ==================================================================
> > > ==============
> > >
> > >
> >
>
>
>
============================================================================
====
>      To unsubscribe from this mailing list, please see the instructions at
>                http://www.checkpoint.com/services/mailing.html
>
============================================================================
====
>
>



================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.