Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] FW1 4.1 sec policy question

To: [email protected]
Subject: Re: [FW-1] FW1 4.1 sec policy question
From: Leon Noble <[email protected]>
Date: Tue, 18 Feb 2003 19:06:35 -0000
Importance: Normal
In-reply-to: <[email protected]>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

-----Original Message-----
From: Leon Noble [mailto:[email protected]]
Sent: 13 February 2003 13:42
To: Mailing list for discussion of Firewall-1
Subject: RE: [FW-1] FW1 4.1 sec policy question

Attached is text file that contains a perl script. This perl script will output an html file detailing user access, policy change and authentication failure by your firewall admins. It does not detail actual changes but may help you in keeping a log of access. the script requires the following arguments in the respective order

fwhistory.pl outputfile filetoread hostname

file to read is $FWDIR/log/cpmgmt.aud on your management server. It will be obsolete by the NG version but useful for 4.1 if you still have 4.0 the file is $FWDIR/log/fwui.log

Leon Noble
Scotland On Line
[email protected]

To find out more about our products and services see
http://www.scotlandonline.co.uk.
For Scotland's leading information website visit
http://www.scotlandonline.com.
Trace your Scottish family history at http://www.scotlandspeople.gov.uk

This message is confidential and may contain privileged information. You
should not disclose its contents to any other person. If you are not the
intended recipient, please notify the sender named above immediately.

It is expressly declared that this e-mail does not constitute nor form part
of a contract or unilateral obligation.

Opinions, conclusions and other information in this message that do not
relate to the official business of Scotland On Line Limited shall be
understood as neither given nor endorsed by it.

-----Original Message-----
From: Mailing list for discussion of Firewall-1 [mailto:[email protected]]On Behalf Of Firewall Security
Sent: 13 February 2003 12:23
To: [email protected]
Subject: [FW-1] FW1 4.1 sec policy question

Hello

Some time ago I started re-naming the security policy on our firewall to reflect the dates when changes are made, i.e., 2.10.03. Does anyone see any possible problems with this approach? Finally, I plan on keeping around 1 to 2 weeks worth of info (previously saved policies) around. After that can I simply delete them?

Setup:

Dual Nokia ip440s (vrrp mode)

Checkpoint 4.1

w2k (mgmt station)

-Thanks!

________________________________________________________________________
This e-mail has been scanned for all viruses by Star Internet. The
service is powered by MessageLabs. For more information on a proactive
anti-virus service working around the clock, around the globe, visit:
http://www.star.net.uk
________________________________________________________________________

Prev by Date: [FW-1] Using Backup VRRP for static NAT - Nokia HA
Next by Date: [FW-1] Draytek and Checkpoint
Previous by thread: Re: [FW-1] FW1 4.1 sec policy question
Next by thread: Re: [FW-1] 4.1 Tool to export or view all the host to IP addressmappings
Index(es):
- Date
- Thread