Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW-1] terminated connection with FireWall-1 NG FP2

To: [email protected]
Subject: [FW-1] terminated connection with FireWall-1 NG FP2
From: Roman Serbski <[email protected]>
Date: Thu, 10 Oct 2002 19:15:42 +0600
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>
User-agent: Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.0.1) Gecko/20021001

I apologize, I didn't provide Subject in the first message.
Sorry.

Hi list,

I've some strange problem with "connection being terminated"
while having open connection with Firewall-1 NG FP2 using
GUI Policy Editor FP2. Any help/hints/suggestions would be
greatly appreciated!

Here is my setup:

#uname -a
SunOS 5.8 Generic_108528-15 sun4u sparc SUNW,Ultra-250

#fw ver
This is Check Point VPN-1(TM) & FireWall-1(R) NG Feature
Pack 2 Build 52163

Sun has three network interfaces: two gigabit (ge0, ge1) and
one 10/100 (hme0).

ge0 and ge1 go to the Nortel BayStack 450-24T switches (they
have gigabit adapters too). Those two Nortel switches
organized into two VLANs.

hme0 goes to my ISP.

Here's my problem:

When I try to connect to Firewall-1 NG FP2 using Policy
Editor NG FP2 (build 520146) everything seems to be OK. I
pass authentication and can add/edit network objects,
monitor log messages and etc., BUT when I try to ping or
telnet something from GUI workstation while having open
connection with FireWall I immediately receive "Connection
with FireWall has been terminated" error message and in
order to get connection again I have to cpstop/cpstart CP.
This _only_ happens when I connect to FireWall through
Nortel switches (either from VLAN 1 or VLAN 2).

If I connect to FireWall through hme0 (using crossover
cable) everything is fine.
I suppose that there is something wrong with gigabit
adapters configuration. Maybe TCP timeout settings?

Has anyone using Nortel BayStack 450-24T switches (with
gigabit adapters) seen this behavior? Any hints?

Thank you for your time.
Looking forward to hear from you.

Regards,
Roman

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Prev by Date: [FW-1] MSN Messenger
Next by Date: [FW-1]
Previous by thread: Re: [FW-1] MSN Messenger
Next by thread: [FW-1] Moving NG logs to a different partition
Index(es):
- Date
- Thread