[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] [[FW-1] Fw1-NG FP2 notforwardinghttp

To: [email protected]
Subject: Re: [FW-1] [[FW-1] Fw1-NG FP2 notforwardinghttp
From: Jason Poudrier <[email protected]>
Date: Fri, 10 May 2002 10:00:16 -0500
Reply-To: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

We have discovered what was happening on our red hat box.

The log file ahttpd.elg in /opt/CPfw1-50/log/ had exceeded 2GB, and the
linux kernel is not compiled for large files.  This log file being full
was causeing ahttpd to keep dying and restarting.

We still have not determined what is causeing this file to grow so
quickly, and why it does not rotate to the management station like the
rest of the logs.

Thanks
Jason Poudrier
Information Systems
Seton Healthcare [email protected]
>>> [email protected] 05/10/02 09:00 AM >>>
look this...


  I have a NG FP1/windows2000 sp2. My 200 users uses http by two ways.

            first - sites that have full acess ( no auth )

            second- sites that users must authenticate themselves in
order to have acess to the internet.


        The internet Explorer of may users is setted to use prxy (ip of
firewall) and 80 port.


        While user auth is working fine, i try to telnet 80 port of
firewall and it connects


        My problem is: suddanly user atuh stops to work, anda when i try
to telnet 80 port of firewall, doesn't connect.


        What's going on ????



cheers

Andr� Conde Caselli
Tel. 0xx------------------------------------------------------
Comunica��o corporativa da Alian�a do Brasil

-----Mensagem original-----
De: Jason Poudrier [mailto:[email protected]]
Enviada em: quinta-feira, 9 de maio de 2002 17:12
Para: [email protected]
Assunto: Re: [FW-1] RES: [FW-1] Fw1-NG FP2 not forwarding http

We are doing client auth against a novell ldap server.  we also have a
rule that just accepts specific websites.  No http trafic is going
through.

Thanks
Jason Poudrier
Information Systems
Seton Healthcare [email protected]
>>> [email protected] 05/09/02 14:28 PM >>>
Hy Jason,



        Do you use http auth such as user or client or session ???? or
no ????

Andr� Conde Caselli
Tel. 0xx------------------------------------------------------
Comunica��o corporativa da Alian�a do Brasil

-----Mensagem original-----
De: Jason Poudrier [mailto:[email protected]]
Enviada em: quinta-feira, 9 de maio de 2002 11:11
Para: [email protected]
Assunto: [FW-1] Fw1-NG FP2 not forwarding http

We currently are having a problem with all http traffic not being
forwarded by NG.  We had this problem about a week ago, and we upgraded
from FP1 to FP2.  The problem went away but it has now returned.  We
have tried a cpstop and cpstart,  we have cleared the proxied_conns, and
ahttp seems to be running fine.  Does anyone have any thoughts?


Thanks
Jason Poudrier
Information Systems
Seton Healthcare [email protected]

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: Re: [FW-1] SecuRemote with IKE
Next by Date: [FW-1] FW Checkpoint 4.1 Upgrade
Prev by thread: Re: [FW-1] Policy Editor over SecuRemote
Next by thread: Re: [FW-1] PPTP Connections through Hide NAT
Index(es):
- Date
- Thread