----- Original Message -----
Sent: Wednesday, March 27, 2002 1:14
PM
Subject: Re: [FW-1] Cannot connect to
management server from remote gui
We too are experiencing this problem but only after trying to
merge the objects.C and rulesbases.fws from 4.1 to NG FP1 on Solaris 8.
After following the advise from Checkpoint for the merger/upgrade and
restarting the management station the CPMI port 18190 does not start up as
listening.
-----Original Message-----
From: Dutot
Stephane [mailto:[email protected]]
Sent: Wednesday, March 27, 2002 15:18
To: [email protected]
Subject: Re: [FW-1] Cannot connect to management server from remote
gui
Dear,
I have excaly the same probléme with my test plateform under
Solaris 8 and
NG.
I can't
connect on the Firewall to administrate this with GUI Clients
I take some trace with fwm and fwd in debug mode.
I have find an error with SSL Function when i try to connect
on Firewall.
If you have a solution, i'm very interesting.
This is a some part of debug output :
[FWM 2003]@matrix is_initialized: new process or forked
[FWM 2003]@matrix SSL e stack
[FWM
2003]@matrix ckpSSL_NegotiateStep: should retry.
[FWM
2003]@matrix ckpSSL_NegotiateStep: current state = SSLv3 read client
hello B
[FWM 2003]@matrix SSL e
stack
[FWM 2003]@matrix ckpSSL_NegotiateStep: should
retry.
[FWM 2003]@matrix ckpSSL_NegotiateStep: current
state = SSLv3 read client
certificate A
[FWM 2003]@matrix ckpSSL_NegotiateStep: Current step failed.
Error is:
336151570
[FWM
2003]@matrix SSL e stack
[FWM 2003]@matrix
2003:error:14094412:SSL routines:SSL3_READ_BYTES:sslv3
alert bad certificate:s3_pkt.c:790
[FWM 2003]@matrix ckpSSL_fwasync_connected: no connections err
-3
[FWM 2003]@matrix ckpSSL_fwasync_close: start
shutdown
[FWM 2003]@matrix ckpSSL_ShutdownHandler: (2)
SSLv3 read client certificate
A
[FWM 2003]@matrix ckpSSL_Destroy: close fd 22
[FWM 2003]@matrix fwasync_set_opaque: 15: purging opaque 36a618
[FWM 2003]@matrix ::Release object (CFwdCommStream) 0x36a618
to conn
0x3615504
[FWM
2003]@matrix ConnectionEnd: Comm client ->
ResetSentDefinitionHistory
[FWM 2003]@matrix ::Add
object (CFwdCommStream) 0x36a618 to conn 0x3615504
[FWM 2003]@matrix CFwdCommStream::end_handler Connection to FWD
ended
conn=372b10
-----Message d'origine-----
De :
RENATA CARVALHO VINCOLETTO
[mailto:[email protected]]
Envoyé : mercredi 27 mars 2002 14:47
À : [email protected]
Objet : [FW-1] RES: Re: [FW-1] Cannot connect to management server
from
remote gui
Hi Richard,
I did it several times...
but, it not worked.
I dont know what is happening, I
can't even receive finger print.
Renata
-----Mensagem original-----
De:
richard marshall [mailto:[email protected]]
Enviada em: quarta-feira, 27 de março de 2002 10:01
Para: [email protected]
Assunto: Re: [FW-1] Cannot connect to management server from
remote gui
if you're trying to connect remotely, make sure that any
firewalls
between
you and the
server have vpn running correctly. a fwstop/start fixed the
exact same problem i had 30 mins ago...
rich
-----Original Message-----
From:
Mailing list for discussion of Firewall-1
[mailto:[email protected]]On
Behalf Of RENATA
CARVALHO VINCOLETTO
Sent: 27 March 2002 12:23
To:
[email protected]
Subject:
[FW-1] Cannot connect to management server from remote gui
Hi everyone,
I have been installed my
new NG on solaris 8, everything works fine, but
mye
remote GUI.
I can't connect, I receive this message:
"Authentication to server
'10.1.1.2' failed".
I can ping my firewall, but I cant connect from my remote
GUI.
Any tip?
TIA,
Renata Vincoletto
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set
fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please
see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
"This communication is intended solely for the
addressee and is confidential and not for third party unauthorised
distribution."