| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] State synchronization
- To: [email protected]
- Subject: Re: [FW-1] State synchronization
- From: "Roelandts, Guy" <[email protected]>
- Date: Mon, 20 May 2002 11:41:08 +0200
- Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
- Sender: Mailing list for discussion of Firewall-1 <[email protected]>
- Thread-index: AcH+2Aumt0YpuN7FR3ip60d9vpGocQBCjXJg
- Thread-topic: [FW-1] State syncronization
Hi,
From what I was told : since NG you need to enable High Availability
in order to be able to sync two, or more, modules. You can't enable HA
if the module has also a Mgmt Server on it. So to me the answer to your
question is : YES, you need to separate them.
Met vriendelijke groeten - Bien a vous - Kind regards
Guy ROELANDTS
EMEA GS Internet Expertise Centre - CCSE
Compaq BeLux - now part of the New HP
E-mail : [email protected]
Tel: +32(02)729.77.44 (options 3 - 3 - 1)
Fax: +32(02)729.77.65
==========================================================
This message may contain confidential and/or proprietary information,
and is intended only for the person/entity to whom it was originally
addressed. The content of this message may contain private views and
opinions which do not constitute a formal disclosure or commitment
unless specifically stated. Should you receive this message by mistake
please inform the sender immediately.
==========================================================
-----Original Message-----
From: Naoki Takasu [mailto:[email protected]]
Sent: 19 May 2002 03:13
To: [email protected]
Subject: [FW-1] State syncronization
Hello all,
I'm working with 2 FW-1 NG FP1 on Solaris 8. One machine has a
management station and a FW-1 module installed, and the other has a FW-1
module installed. The management station manages both FW-1 modules.
I'm trying to syncronize those FW-1 modules' state, but no communication
via port 256 is seen, so they don't seem to communicate each other. I
have configured below:
a. Both FW-1 modules have the same security policy.
b. The time of both machines is syncronized with NTP.
c. $FWDIR/conf/sync.conf lists an IP address of the other FW-1 modules.
I wonder I must install the management station and the FW-1 module on
different machines. Does anybody have any idea?
Thank you,
Naoki Takasu
[email protected]
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
|
|
