NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] ftp problems - command ended without a new line



Title: Message
That's a very good question :)
 
In my solution the enforcement module and the management station are in the same machine.
 
I think you have to do it in both of them but this is just a guess...
 
Ricardo Marques
-----Original Message-----
From: Børge Berg-Olsen [mailto:[email protected]]
Sent: segunda-feira, 24 de Fevereiro de 2003 15:29
To: [email protected]
Subject: Re: [FW-1] ftp problems - command ended without a new line

Excellent! Thank you very much!
 
I am not sure if it works yet, since the firewall is yet to be put into production. We had to take it out again after we discovered the dropped packets.
 
Question: do we have to do this both on the enforcement modules and the management station, or does it suffice to do only on the management station then push the policy?
 
Thanks,

--
Børge Berg-Olsen
------------------------------------------------------------------------
 +47 90 62 71 78          DoD#2101, DoDRT#017, NIC#015, PJ#006, OGM#007
 [email protected], Ducati M600, Audi 100 2.3E Ubesudlet: Aldri eid en J&%#PS
-----Original Message-----
From: Mailing list for discussion of Firewall-1 [mailto:[email protected]] On Behalf Of Marques, Ricardo
Sent: Monday, February 24, 2003 1:05 PM
To: [email protected]
Subject: Re: [FW-1] ftp problems - command ended without a new line

I have the same problem last month...15 days of pain...

This is a problem with Checkpoint, but you can force the product to accept the packet without the new line, this is what you have to do:


1) Stop Firewall-1 services (CPSTOP)

2) Edit the $FWDIR/lib/base.def

        Change (comment out) the following line:

                #define FTP_ENFORCE_NL

        to:

                // #define FTP_ENFORCE_NL

3) Restart Firewall-1 Services (CPSTART)

4) Re-install the security policy

This solve my problem, i would aprecciate if you give me feedback if it solves yours too?

Good luck,
Ricardo Marques

-----Original Message-----
From: "Berg-Olsen, Børge" [mailto:[email protected]]
Sent: segunda-feira, 24 de Fevereiro de 2003 7:48
To: [email protected]
Subject: [FW-1] ftp problems - command ended without a new line


Gurus,

I get a "message_info: Port command ended without a new line" log entry when
trying to connect to a particular external FTP site from machines behind
FW-1 NG FP3.

Have anyone seen this issue before, and have a solution for it? I am wondering if it is a malformed ftp script, or if it is a "feature" of NG FP3...

--
Best regards,

Børge Berg-Olsen
Senior Consultant WAN/IT-infrastructure

Coop Norge
IT Process & Developement

Email:     mailto:[email protected]
Cell:      +47 90 01 75 15
Telephone: +47 22 89 76 20
Fax:       +47 22 16 52 07

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.