| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] Scheduled fw logswitch no workie-- any ideas? :)
I have found that if your log file is larger than a couple of
hundred meg the logswitch will fail on WinNT/2k. Try doing a fwstop,
move the contents of the $FWDIR\logs directory into another directory
outside of the logs directory. Do a fwstart and wait 5 min and try your
"fw logswitch" again. If it is successful then the failure is due to
your log files being to large.
I also recommend you configure the checkpoint services to run as
any account that has administrative privileges on the machine. There is
no reason why you would have to set the "interact with desktop" option
-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:[email protected]] On Behalf Of
Drake, Brian
Sent: Friday, May 31, 2002 9:28 AM
To: [email protected]
Subject: Re: [FW-1] Scheduled fw logswitch no workie-- any ideas? :)
I had a problem similar to this. Try setting the checkpoint service to
start under the admin account not the system account. This cleared up
all of my issues.
Brian Drake
Central Technology Services
-----Original Message-----
From: Russell Washington [mailto:[email protected]]
Sent: Wednesday, May 29, 2002 5:26 PM
To: [email protected]
Subject: Re: [FW-1] Scheduled fw logswitch no workie-- any ideas? :)
Nope, no shared folder, strictly local, and I have confirmed that it is
using the system account as you described. Question for you though--
with this in mind, does the service need to be able to interact with the
desktop for this to work?
-----Original Message-----
From: David Gillett [mailto:[email protected]]
Sent: Wednesday, May 29, 2002 8:24 AM
To: [email protected]
Subject: Re: [FW-1] Scheduled fw logswitch no workie-- any ideas? :)
Are you trying to switch out the log data to/on a shared folder?
Part of what changed in the NT schedule service, somewhere around
SP5/6, is that it now runs only as the local SYSTEM account, and can no
longer run as a user with domain privileges. This has usually been the
issue when I've seen stuff work when done manually, but fail when
scheduled.
Dave Gillett
> -----Original Message-----
> From: Mailing list for discussion of Firewall-1
> [mailto:[email protected]]On Behalf Of
> Russell Washington
> Sent: Tuesday, May 28, 2002 13:45
> To: [email protected]
> Subject: [FW-1] Scheduled fw logswitch no workie-- any ideas? :)
>
>
> I've got a 4.1/SP5 firewall on my hands that just doesn't like fw
> logswitch when handled by a once-a-week AT job. It usually works with
> the manual approach, although sometimes it sputters and complains.
> Platform is NT4,
> SP6a. The log isn't particularly large in most weeks, and the problem
> doesn't seem to be load-dependent in general (although
> *really* big logs do
> seem to complicate the manual process).
>
> Any suggestions? I haven't been able to get the AT job approach to
> work even once, even though I have been able to confirm that it has
> been running and failing.
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
|
|
