| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [FW1] Pls help me
- To: "'Steve Moran'" <[email protected]>, "'Fw-1-Mailinglist-Digest \(E-mail\)'" <[email protected]>
- Subject: RE: [FW1] Pls help me
- From: "Sugih Budihardjo" <[email protected]>
- Date: Sat, 15 Sep 2001 12:21:41 +0800
- Importance: Normal
- In-reply-to: <292C9F382B9702429DD2A0CD9107F1938A0703@cssincmail1.csssoftware.com>
- Sender: [email protected]
Hi all,
Actually, mine is very small network which only involved 4 computers, we put
them at Data Centre. The seperation was made by our network consultant for
security. Network 192.168.1.0 (contains 2 webservers)is DMZ and 192.168.2.0
is Internal (contains db & apps server) which only allows communication
to/from 192.168.1.0 network in other words, no direct connection to outside
world.
I'm thinking of changing the design to put them at the same network, what do
you think guys? I'm not really good network security, maybe you can give me
the "plus & minus" of using such design.
FYI, the firewall froze again last night during backup.
Regards,
Sugih
-----Original Message-----
From: Steve Moran [mailto:[email protected]]
Sent: Saturday, September 15, 2001 6:13 AM
To: 'Sugih Budihardjo'; Fw-1-Mailinglist-Digest (E-mail)
Subject: RE: [FW1] Pls help me
Have you considered building a third network, specifically for doing back
up? Transferring 2 gigs of data through the firewall will be slow even when
you do get it to work.
If you tell your NT servers not to route, then stick a second nic in each
one pc, you can have your own little backup network which straddles both
sides of your 192.168.1 and 192.168.2, as long as you turn off ip routing
you should be ok. !!! I would not do this if there was a serious security
reason for separating these two networks !!!, but if its something like
organizational separation, you'll be ok. i.e. if the firewall rule that
allows traffic from one to the other is pretty wide open, then ok. On the
other hand if no traffic from one can get to the other, I would not do this.
-----Original Message-----
From: Sugih Budihardjo [mailto:[email protected]]
Sent: Thursday, September 13, 2001 8:02 PM
To: Fw-1-Mailinglist-Digest (E-mail)
Subject: RE: [FW1] Pls help me
Hi all,
I hope this e-mail will answer all of your questions who has replied to my
problem.
Machine: IBM Netfinity 4000R
RAM : 256
NIC: 3 unit of 10/100 IBM NIC
Amount of data need to be backup daily over the other subnet is around 2 GB
The machine has been replaced by IBM when the first time I experienced this
problem.
I agree that this is related to huge traffic that accurs during the backup.
I've disabled the logging for the particular rule and it works. And it's
been running fine at least for the last 2 days. I'm still monitoring the
progress.
Thanks & Regards,
Sugih
-----Original Message-----
From: Frederick Tippens [mailto:[email protected]]
Sent: Thursday, September 13, 2001 8:47 PM
To: [email protected];
[email protected]
Subject: Re: [FW1] Pls help me
Just some basics...hope this helps
does the system meet the minimum requirments for the software?
is the software installed correctly?
are the latest drivers installed?
If your getting anything other than one beep upon boot up you may have a
BIOS problem.
>From: "Sugih Budihardjo" <[email protected]>
>To: "Fw-1-Mailinglist-Digest \(E-mail\)"
><[email protected]>
>Subject: [FW1] Pls help me
>Date: Wed, 12 Sep 2001 09:55:53 +0800
>
>
>Hi all,
>This is a problem with my firewall that I've been facing ever since I have
>it running.
>Actually I've reported this to both parties Checkpoint and Arcserve and I'm
>still waiting for the solution but in the mean time I'd also like to share
>with you hoping that any of you can also help me. I'm using Checkpoint2000
>Strong3DES.
>
>This is my network diagram:
>
> |-----------------------|
>192.168.1.0------------|192.168.1.1 |
> | |
> | Firewall w.x.y.z|----------External
>Interface
> | |
>192.168.2.0------------|192.168.2.1 |
> |-----------------------|
>
>So as you see that the firewall machine also acts as a router to the
>internal networks.
>I have Arcserve2000 running on one of the machine in 192.168.1.0 network.
>The backup works OK when it backups machines on the same network
>The problem only happens when it backup machines on the other network which
>is 192.168.2.0, it causes the firewall machine to freeze, you can't do
>anything not even moving the mouse cursor. No log on both NT event viewer
>and Checkpoint. What I can do is only reset the power button of the
>firewall
>machine.
>I did check with Arcserve but they claimed that this issue is not related
>with their backup software.
>FYI, all of the machines are running Winnt4 SP6a.
>
>
>
>Pls help me.
>
>Best Regards,
>Sugih Budihardjo
>
>======================================================
>This email and any files transmitted with it are confidential and intended
>solely for the use of the individual or entity to whom they are addressed.
>If you are not the intended recipient or the person responsible for
>delivering to the intended recipient, be advised that you have received
>this
>email in error and that any use of the information contained within this
>email or attachments is strictly prohibited. Internet communications are
>not
>secure and we do not accept any legal responsibility for the content of
>this
>message. Any opinions expressed in the email are those of the individual
>and
>not necessarily those of the Company. If you have received this email in
>error, or if you are concerned withthe content of this email please notify
>the IT helpdesk by telephone at +852 2525 8750.
>
>
>
>
>===========================================================================
=====
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
>===========================================================================
=====
>
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
|
|
