| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[FW-1] Lost connectivity, hopeful for explanation
- To: [email protected]
- Subject: [FW-1] Lost connectivity, hopeful for explanation
- From: Christopher Ferraro <[email protected]>
- Date: Mon, 27 Jan 2003 10:07:34 -0600
- Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
- Sender: Mailing list for discussion of Firewall-1 <[email protected]>
- Thread-index: AcLGGr5T2PEyecl5So6FJ9mUkTQZOwAAxa5g
- Thread-topic: Lost connectivity, hopeful for explanation
All:
This morning at 8:37, my offices lost connectivity to our central site.
Connectivity was restored at 9:07, no configuration changes we made by
any engineers at any site.
An error message in my application log at 8:37 reads as follows:
firewall-1: allow_encryption: fw_dtab_record_conn failed: The access
code is invalid
Does anyone have any clues as to what this indicates ? I am also seeing
an abnormally high amount of tcp errors, specifically, the error
"unknown established tcp packet"
CF
Christopher A. Ferraro
Senior Systems Engineer, Hubbard One
p:x 269
f:m:m2:-----Original Message-----
From: Chontzopoulos Dimitris [mailto:[email protected]]
Sent: Monday, January 27, 2003 9:30 AM
To: [email protected]
Subject: Re: [FW-1] How to Implement High Availability
I read about it in the VPN-1/Firewall-1 Administration Guide p.56x
something but I hoped it wouldn't be the case... Thanks anyway... I
understood that it would take a separate Management Station and 2
Firewall Modules to do that but I hoped there was a way to bypass it
(that is using native CheckPoint HA module and not 3rd party software).
Thanks to everyone for the responses.
Cheers,
Dimitris
-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:[email protected]] On Behalf Of
Security
Sent: Monday, January 27, 2003 4:32 PM
To: [email protected]
Subject: Re: [FW-1] How to Implement High Availability
Forgeddaboutit,
Solution
Can the Management Server be installed on one Module of the Check Point
High Availability pair?
Solution ID: 55.0.117
Creation Date:10/26/2000
Revised Date:08/23/2002
Environment:
FireWall-1 4.1, High Availability Module, VPN-1, Management,
Installation
Symptoms:
Cause:
Solution:
According to the Administration Guide for FireWall-1 Version 4.1: "You
will need at least three machines to implement High Availability: a
Management Station and two VPN-1/FireWall-1 Modules." Therefore, the
Management Server installed on one Module of the High Availability pair
will not be supported for Check Point High Availability. The Management
Server must be on a separate machine from the high availability modules.
-----Oorspronkelijk bericht-----
Van: Chontzopoulos Dimitris [mailto:[email protected]]
Verzonden: maandag 27 januari 2003 14:12
Aan: [email protected]
Onderwerp: Re: [FW-1] How to Implement High Availability
Are we talking about a distributed installation? I was hoping to deal
with this using the
firewall-module-and-management-module-installed-on-the-same-machine
approach...
-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:[email protected]] On Behalf Of
Jonathan Jackson
Sent: Monday, January 27, 2003 12:16 PM
To: [email protected]
Subject: Re: [FW-1] How to Implement High Availability
Try these....invaluable.
http://firewall-1.jimparker.co.uk/firewall-1.html
http://www.tla.ch/TLA/FW/FW1FAQ.html#General
Cheers,
Jonathan
-----Original Message-----
From: ext Chontzopoulos Dimitris [mailto:[email protected]]
Sent: Monday, January 27, 2003 11:56 AM
To: [email protected]
Subject: [FW-1] How to Implement High Availability
Hello list,
We have the need to implement High Availability between 2 CP2000 v4.1
SP3 Firewalls that will reside on 2 WinNT v4.0 SP6a Servers. The thing
is that I do not know how to do this. I am capable of installing and
configuring CP2000 v4.1 SP3 Firewalls including everything except High
Availability. I have read so far the chapter from "Essential CheckPoint
Firewall-1" from Phoneboy but I didn't find the information I need.
Could someone please point me to the right direction or provide me with
a "How-to" paper or something like that? Thank you all for your
responses.
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
|
|
