[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] SOS!!. can't telnet after upgrading!!-Update
Hi.. Geoffrey, Thanks for your kind assistance, I have successfully get to the fw and installed the license and use GUI client to connect to it, amend rule and install it to the firewall. But the firewall rule work. I thought everything okay. But after I reboot it. I can't telnet to the firewall again and can't use GUI to connect to it? What could be wrong? Thanks a lot Sim -----Original Message----- From: Geoffrey Cheng [mailto:[email protected]] Sent: Tuesday, April 09, 2002 5:48 PM To: [email protected] Subject: RE: [FW-1] SOS!!. can't telnet after upgrading!!-Update Hi Sim, ELA_Proxy is started by another rc script. Without a valid license you cannot use the GUI to config the firewall remotely even you have added your IP address by cpconfig. The safe way is to make sure you have installed the license and add your IP address by cpconfig. Then you can use the GUI to add telnet permission. Thanks and Regards, Geoffrey -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[email protected]]On Behalf Of Sim, CT (Chee Tong) Sent: Tuesday, April 09, 2002 4:06 PM To: [email protected] Subject: [FW-1] SOS!!. can't telnet after upgrading!!-Update I asked my colleague to type the following result and copy me the output, I wonder why /bin/runELA_proxy and fwboot and ela_proxy will start after reboot, I haven't yet install the new license. Is that the reason that I can't telnet to it? And I can't use the GUI client to connect as well. How to stop it. Just fwstop? Type "ps -ef | grep fw" copy me the output (just copy me the user name and the process name) root 390 .... /bin/csh-fb/opt/CPfw1-41/bin/runELA_proxy -minInterval 60 -maxRetries 1 /opt/ root 111 .... /etc/fw.boot/fwboot bootd root 398 .... /opt/CPfw1-41/bin/ela_proxy Q2)Even I manage to telnet to it after the disable all these process, how do I start the firewall service which will let me telnet into it (after installing the license). Can the firewall start without any policy installed? Can I use the GUI that to view the available policies when no policy installed and change it before I installed the policy, as I need to change the new rule to suit the new IP for the external interface -----Original Message----- From: Sim, CT (Chee Tong) Sent: Tuesday, April 09, 2002 3:21 PM To: [email protected] Subject: [FW-1] SOS!!. can't telnet after upgrading!! Hi.. I just upgraded remotely my remote branch checkpoint firewall from checkpoint 4.0 to 2000. First I fwstop the firewall, then I change the external IP which the license that tied to. Then I just perform the Upgrade using InstallU but I didn't install the license before reboot. After I reboot the interface come up, as I found I can ping the internal interface again. But I can't telnet !!!!!!!!!! What happen? It states could not open a connection to host: Connect Fail. Why? What is the reason causing from your experience? I thought the fw policy won't start before you install license?? I am not at the city and can't look at the console, can only ask people help to type command ================================================================== De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. ================================================================== The information contained in this message may be confidential and is intended to be exclusively for the addressee. Should you receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return e-mail. ================================================================== ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================================== De informatie opgenomen in dit bericht kan vertrouwelijk zijn en is uitsluitend bestemd voor de geadresseerde. Indien u dit bericht onterecht ontvangt wordt u verzocht de inhoud niet te gebruiken en de afzender direct te informeren door het bericht te retourneren. ================================================================== The information contained in this message may be confidential and is intended to be exclusively for the addressee. Should you receive this message unintentionally, please do not use the contents herein and notify the sender immediately by return e-mail. ================================================================== ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|