[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] CVP Security Server problem
I do have the "Trickle" feature enabled. The problem is instantaneous. It's not like the client times out because it happens so fast. I have read that there might be some things I need to add to the objects.c file or something in the conf directory. As I have so far made no manual changes to those files as of yet could this be my problem? -JRM Jeremy Morrill Project Manager Phillips Academy Phone:E-mail: [email protected] -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[email protected]] On Behalf Of MARTIN CRABTREE Sent: Friday, November 09, 2001 8:45 AM To: [email protected] Subject: Re: [FW-1] CVP Security Server problem Jeremy, We are running the exact same thing as your downgraded version but on less of an NT box. While we do have the occasional problem site, most do work and realplayer does upgrade. We have HEAVY Internet usage and it is proving to be no real load on the NT box (Single processor, 512 Megs). Have you tried setting the "trickle" feature on in Viruswall? Normally the Trend Micro Viruswall accepts the downloads and holds them until it has the whole package and scans it for viruses. Sometimes this causes time outs in the browser or client software. With the trickle feature turned on, it releases a small amount of data to the client (you can set amount) for an amount taken in, this keeps the connection alive. At the client you'll see the download going real slow, then all of a sudden (when Viruswall has all the info and has scanned it) it just dumps it all down to the client. Your client goes from 5% to 100% in a matter of seconds (approximate :-) ) There is one thing to look out for with trickle turned on though. When a download is happening, code is being downloaded to the client before all of the package is checked at the Viruswall box. If a virus is detected it puts up the display and stops the download. However, it does not delete the code that has been trickled from the client, if the portion of the code that had the virus made it to the client AND the user double clicks on it AND they have disable the desktop Antivirus, they could get infected. For the video and audio type files, you can have the Viruswall not scan them. So far no one has found a way to write viruses into them, YET! Martin Crabtree Firewall Administrator Network Services Blue Cross & Blue Shield of S.C. (W)(C)------------------( Forwarded letter 1 follows )-------------------- Date: Fri, 9 Nov 2001 06:56:28 -0500 To: [email protected] From: Jeremy.Morrill[jmorrill]@ANDOVER.EDU.inet Sender: [email protected] Reply-To: [email protected] Subject: [FW-1] CVP Security Server problem I am trying to implement a Checkpoint firewall with AntiVirus with limited success. Here is my configuration. Firewall --------------------------- Nokia IP530 IPSO v3.4.1-FCS5 CheckPoint Firewall v4.1 SP5 Viruswall -------------------------- Windows 2000 SP2 with all Windows Updates Dual 1.266Mhz Processors 1Gig Ram 72 Gig Disk Interscan Viruswall v3.52 Everything seems to work great. I can browse the web, downloads are checked for viruses. They are even cleaned or deleted if they contain viruses. Exactly how it should work. Now here is the twist. Whenever I try to view a quicktime movie on the web It doesn't work. Also if I try to upgrade my software such as Real Player, Quicktime or any other software upgrade method that uses port 80 to connect, it fails. Even media player doesn't work. The logs claim they accepted everything but it still doesn't work. I know I'm not loosing my mind. I had this working at another site on a Windows NT Checkpoint v4.0 with no problems. So far I have built another Viruswall server, running with the same version of the software running with the same version of windows 2000 "SP2 with updates", on a desktop computer this time, as I don't have another server available to me at this time. When I try to do any of the things like watch quicktime, update my RealPlayer Software or install Quicktime using the interactive download method, they all fail same as before. I tried eSafe thinking it was a Viruswall problem but it did the exact same thing. I downgraded to Checkpoint SP4 and IPSO v3.4 but that didn't help either. What am I doing wrong? Jeremy Morrill Project Manager Phillips Academy Phone:E-mail: [email protected] =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|