Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW-1] RE: [FW-1] Checkpoint 4.1 Modul doesn´t log to Provider-1 MLM/CLM

To: [email protected]
Subject: [FW-1] RE: [FW-1] Checkpoint 4.1 Modul doesn´t log to Provider-1 MLM/CLM
From: Marco Czerwon <[email protected]>
Date: Thu, 16 May 2002 16:42:15 +0200
Comments: To: [email protected]
References: <[email protected]>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Hi Engin,

I´ve done the putkeys at all. Here´s one example :

IP GATEWAY  = 111.111.111.111
IP MLM         = 222.222.222.222
IP CLM         = 333.333.333.333

On the MLM/CLM
fw putkey -p abc123 -n 333.333.333.333 111.111.111.111

On the gateway
fw putkey -p abc123 -n 111.111.111.111 333.333.333.333

The logging port 257 is open because there´s a rule on the gateway that
allows
any trafficand there´s no other firewall between.

I also tried the masters file with the same result.....

PS: When I try a telnet session on port 257 from the gateway to the
(virtual) CLM adress I got a connection.

That´s real nightmare ;-)

Bye
Marco





> Hi,
>
> 1) Did you do the putkey operation between MLM and the 4.1 module???
> 2) Is the log connection port (tcp257) allowed between MLM and module?
> 3) Instead of using loggers file, you can try to use the masters file
> in the
> module like this:
>
> cma_ip_address
> localhost
> +mlm_ip_address
>
> Try to check if the tcp257 connection is established between MLM and
> 4.1
> module...
>
> Engin Ozbay
>
>
>
> -----Original Message-----
> From: Marco Czerwon [mailto:[email protected]]
> Sent: Thursday, May 16, 2002 3:45 PM
> To: [email protected]
> Subject: [FW-1] Checkpoint 4.1 Modul doesn´t log to Provider-1
> MLM/CLM
>
>
> Hi all !
>
> We evaluate Provider-1 NG FP HF1. Everything good so far, but the
> Gateway doesn´t log to the Customer Log Modul. I´ve modified the
> $FWDIR/conf/loggers file on the gateway with the IP adresses of the CLM
> and the CMA. On the CMA Log Viewer everything works fine and I see
> fw1_log connections to CLM & CMA.
>
> In the file $FWDIR/log/fwd.elg I see the following message:
>
> fwd: Connection to Log server ..xxx.xxx failed (xxx.xxx.xxx.xxx
> =
> IP Address of the CLM)
>
> Has anyone seen this before or has any ideas??
>
> Any input is greatly appreciated ...
>
> Bye
> Marco
>
> --
> GMX - Die Kommunikationsplattform im Internet.
> http://www.gmx.net
>
> ========================
> ========================
> =
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> ========================
> ========================
> =
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ========================
> ========================
> =
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> ========================
> ========================
> =
>

--
GMX - Die Kommunikationsplattform im Internet.
http://www.gmx.net

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: Re: [FW-1] Nat.. I think
Next by Date: Re: [FW-1] AW: [FW-1] Upgrade to NG FP2
Previous by thread: [FW-1] Manual NAT in NG
Next by thread: [FW-1] Authorization Timeout
Index(es):
- Date
- Thread