| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] FW-1-MAILINGLIST Digest - 16 Jul 2003 to 17 Jul 2003 (#2003-126)
- To: [email protected]
- Subject: Re: [FW-1] FW-1-MAILINGLIST Digest - 16 Jul 2003 to 17 Jul 2003 (#2003-126)
- From: [email protected]
- Date: Fri, 12 Sep 2003 14:13:20 -0500
- Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
- Sender: Mailing list for discussion of Firewall-1 <[email protected]>
- Thread-index: AcN5XrpFeOo+7fnfQ/Kb13mowoepjgAAx1wg
- Thread-topic: FW-1-MAILINGLIST Digest - 16 Jul 2003 to 17 Jul 2003 (#2003-126)
Do you have all of these forwarded ?...
Or is there something I am looking for ?
-----Original Message-----
From: Michael Lea [mailto:[email protected]]
Sent: Friday, July 18, 2003 2:00 AM
To: Recipients of FW-1-MAILINGLIST digests
Subject: FW-1-MAILINGLIST Digest - 16 Jul 2003 to 17 Jul 2003 (#2003-126)
There are 24 messages totalling 1820 lines in this issue.
Topics of the day:
1. Tcp Packet Out of State
2. SecurePlatform user accounts
3. SecureClient and SCV on NG with AI
4. Secure Configuration Verification
5. Hide NAT default object broken in NG - any workaround?
6. VPN-1 SecuRemote with PPPoE (2)
7. Hide NAT default object broken in NG - any workaround?
8. More trouble upgrade from FP3 to AI... "too many hosts"
9. SecurID with ACE (3)
10. NAT Hide failure reported in logs
11. Cluster problems on Nokia with FP3 (3)
12. X11 Via VPN
13. IPSEC tunnel between Cisco Router and CheckPoint NG
14. State Synchronization
15. logical server how to (2)
16. upgrade_export error
17. HFA-315
18. NG AI - comments?
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
----------------------------------------------------------------------
Date: Thu, 17 Jul 2003 12:58:10 +0530
From: Security Operation Center <[email protected]>
Subject: Re: Tcp Packet Out of State
Hi Jason,
check the traffic using the sniffer on the switch? Make the switch port to 10 or 100 as corresponding connected clinet on port of switch. TCP packet out of state indicated the packet are not coming in the session duration ? hope this might help,
Regards,
Atul Dalal
----- Original Message -----
From: "Jason Cameron" <[email protected]>
To: <[email protected]>
Sent: Wednesday, July 16, 2003 11:57 AM
Subject: [FW-1] Tcp Packet Out of State
I seem to receive alot of tcp packet out of state ( flags 10,4,18 etc ) information in my fwlogs. My leased line clients are connecting via 32k cir frame-relay wan and also have dialup clients. My switches are not set to auto-negotiate and the server nics are set 100mb full duplex. Can anybody explain or assist in why I have such a high amount of tcp packet out of state logs . On average up to 50 of these types of messages a day
Thanks
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 10:34:41 +0100
From: [email protected]
Subject: SecurePlatform user accounts
Is it possible to create individual user accounts on SecurePlatform, in addition to admin?
Thanks!
Huiqi Liu
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 10:49:19 +0100
From: Adrian Wilson <[email protected]>
Subject: Re: SecureClient and SCV on NG with AI
Hi Benny,
Thanks for your reply but I'm not after a customised solution; I've seen your site but what I'm wanting to do should be straightforward using the built in SCV functionality in NG with AI. Do you know where I can get a template demonstrating all the supported options? I've read the document you refer to but it is very limited and does not refer to how to check registry keys or trigger apps. once verified for example.
Thanks,
Adrian
-----Original Message-----
From: Benny Czarny [mailto:[email protected]]
Sent: 16 July 2003 09:12
To: [email protected]
Subject: Re: [FW-1] SecureClient and SCV on NG with AI
I think that http://www.checkpoint.com/techsupport/downloads/docs/firewall1/ng/fp3/SCV_co
nfiguration_NGFP3.pdf
may even work better
Benny
www.opswat.com ( where U could find multiple and customized SCV solutions )
-----Original Message-----
From: Mailing list for discussion of Firewall-1 [mailto:[email protected]]On Behalf Of Matthias Leu
Sent: Wednesday, July 16, 2003 4:06 PM
To: [email protected]
Subject: Re: [FW-1] SecureClient and SCV on NG with AI
Hi,
have you tried http://www.checkpoint.com/techsupport/downloadsng/utilities.html#scveditor?
Hope it helps,
best regards,
Matthias
http://www.fw-1.de
Adrian Wilson wrote:
> I am trying to find a resource giving details of the supported options
> in local.scv on Firewall-1 NG with AI R54. If anybody has a template
> giving
all
> the options including registry checks and how to launch a batch file
> upon successful authentication, or can point me in the right direction
> for finding this information, it would be much appreciated.
>
> I have read all the docs. for NG with AI R54 that I can find but I
> cannot find a good reference for SCV. I have read the SCV NG FP3
> Checkpoint doc. but this seems a bit limited.
>
> TIA
--
AERAsec Network Services and Security GmbH
Wagenberger Strasse 1
D-85662 Hohenbrunn, Germany
http://www.aerasec.de
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 12:55:53 +0100
From: Paul Murphy <[email protected]>
Subject: Re: Secure Configuration Verification
Right...
So I have changed to Traditional Mode. Now I have something weird going on.
The clients sends scv_keep_alive packets to the gateway, which is fine. But it is also sending them to the host it is trying to access.
So for instance if I have a webserver in the encrypted domain, if I http to it from the client, a keep alive is issued with a destination IP of the webserver.
If I don't allow these packets, then the client cannot connect to the webserver... if I allow them it can.
This behaviour doesn't match the documentation - actually the documentation is a bit vague on this part.
Does this match anyone elses experience?
Thanks,
Paul
>>> [email protected] 11/07/2003 06:04:53 >>>
On Thu, Jul 10, 2003 at 04:39:00PM +0300, Paul Murphy wrote:
> However under FP3 the Client Encrypt is implied by the VPN defined in
> the VPN Manager, and also in the Desktop Policy. Neither of these tabs
> appears to have a way of defining which rules only be in place if the
> Desktop is secure.
You have the setting under Global Settings / Remote Access / SCV, first one there I think, that says apply the control also to simplified. I haven't see simplified vpn allowing same kind of control over access to internal resources if desktop is unsecure like you get with traditional mode - it's just "apply to all remote access" or "don't do it at all".
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 09:15:08 -0400
From: Utsav Ratti <[email protected]>
Subject: Hide NAT default object broken in NG - any workaround?
According to some entries in this PhoneBoy FAQ >> http://www.phoneboy.com/fom-serve/cache/457.html, Check Point "broke" (whether accidentally or deliberately) the earlier functionality of being able to NAT behind a 'default' (0.0.0.0/0) object. Is there any fix for this, or do I have to use automatic NAT rules?
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 15:39:57 +0200
From: Attila Takács <[email protected]>
Subject: VPN-1 SecuRemote with PPPoE
I try to reisert my problem, in hope that anybody can answer:
********************************************
Hi All!
I'm new to the list, so I don't know, whether anybody has came accross the problem, that has bee brought up by one of our users. I paste the excerpt of his letter:
> I've tried using VPN-1 Securemote to communicate with a secure
> host via the Internet. My connection is an ADSL (Asymmetric Digital
> Subscriber Lin), and I have to use PPP over Ethernet protocol. But
> after connecting, and having typed the required password, i receive an
> error message -- This is a non secure protocol... -- and the
> connection ends.
>
> In this case what is the correct way to make a live
> connection?
Can anybody help?
Regards:
Attila Takács
********************************************
**********************************************************************
This e-mail and any attached files are confidential and/or covered by legal, professional or other privilege. If you are not the addressee, any disclosure, reproduction, copying, distribution, or other dissemination or use of this communication is strictly prohibited. If you have received this transmission in error please notify Kereskedelmi es Hitelbank (K&H) immediately. K&H does not accept liability for the correct and complete transmission of the information, nor for any delay or interruption of the transmission, nor for damages arising from the use of or reliance on the information.
All e-mail messages addressed to, received or sent by K&H or K&H employees are deemed to be professional in nature. Accordingly, the sender or recipient of these messages agrees that they may be read by other K&H employees than the official recipient or sender in order to ensure the continuity of work-related activities and allow supervision thereof.
**********************************************************************
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 15:47:00 +0200
From: Reinhard Stich <[email protected]>
Subject: Re: Hide NAT default object broken in NG - any workaround?
At 09:15 17.07.2003 -0400, you wrote:
>According to some entries in this PhoneBoy FAQ >>
>http://www.phoneboy.com/fom-serve/cache/457.html, Check Point "broke"
>(whether accidentally or deliberately) the earlier functionality of
>being able to NAT behind a 'default' (0.0.0.0/0) object. Is there any
>fix for this, or do I have to use automatic NAT rules?
it's not a bug, it's a feature ....
cheers
reinhard :-)
--
Reinhard Stich, ASSIST [email protected]
Internet Security AG, 1190 Wien, Nussdorfer Laende 29-33
Tel: +43 1 370 94 40 RS784-RIPE Fax: +43 1 370 94 40-10
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 09:50:03 -0400
From: Vic G <[email protected]>
Subject: Re: More trouble upgrade from FP3 to AI... "too many hosts"
Resolved... My system now has the spoofing working OK, and it's not complaining about excessive hosts.
I did the interface "find" click. It actually flipped the 2 NIC entries over (kept the same name, same IP and all) but just reordered them on the FW gateway's NIC list.... All is well. Evidently, it's picky about how it finds the NIC cards on the PCI buss, even though the Names & IP's match, it has to something else particular to Checkpoint's interpretation.
Thanks for the tips & help, guys.
Vic
>From: Vic G <[email protected]>
>Reply-To: Mailing list for discussion of Firewall-1
><[email protected]>
>To: [email protected]
>Subject: Re: [FW-1] More trouble upgrade from FP3 to AI... "too many
>hosts"
>Date: Wed, 16 Jul 2003 20:13:35 -0400
>
>Nope. No way... The external IS the external interface. Operating
>system is Windows 2K server.
>
>I'll do the "resolve interface" click box tomorrow as someone else
>suggested. That could be it... I duplicated all the parms (nic names,
>MAC numbers etc) from one box to the other, but you never know...
>
>Vic
>
>>From: Bill Husler <[email protected]>
>>Reply-To: Mailing list for discussion of Firewall-1
>><[email protected]>
>>To: [email protected]
>>Subject: Re: [FW-1] More trouble upgrade from FP3 to AI... "too many
>>hosts"
>>Date: Wed, 16 Jul 2003 13:50:16 -0700
>>
>>Are you sure it didn't just loose track of which interface to consider
>>external when you performed the upgrade? Bill
>>
>>On Wednesday, July 16, 2003, at 01:34 PM, Vic G wrote:
>>
>>>Seems to be a bug in the host counter.
>>>Every half hour it adds approx. 150 hosts to my "count". I'm up to
>>>892 now after 20 hour day.
>>>(I have less than 50 hosts...)
>>>
>>>I have no idea if this is related to my having to need to remove my
>>>spoofing parms from both internal and external nic cards, or not.
>>>Tomorrow I'll dump
>>>the hosts file to see what kind of addresses are in there... it takes
>>>about
>>>20 seconds for 1 IP addr to display, then another 20 sec, then an IP,
>>>etc.
>>>
>>>I'm not happy. I will probably be placing old FP3/HF2 back in place,
>>>and putting this AI version on hold...
>>>
>>>Vic
>>>
>>>_________________________________________________________________
>>>Add photos to your e-mail with MSN 8. Get 2 months FREE*.
>>>http://join.msn.com/?page=features/featuredemail
>>>
>>>=================================================
>>>To set vacation, Out-Of-Office, or away messages,
>>>send an email to [email protected]
>>>in the BODY of the email add:
>>>set fw-1-mailinglist nomail
>>>=================================================
>>>To unsubscribe from this mailing list,
>>>please see the instructions at
>>>http://www.checkpoint.com/services/mailing.html
>>>=================================================
>>>If you have any questions on how to change your
>>>subscription options, email
>>>[email protected]
>>>=================================================
>>>
>>
>>=================================================
>>To set vacation, Out-Of-Office, or away messages,
>>send an email to [email protected]
>>in the BODY of the email add:
>>set fw-1-mailinglist nomail
>>=================================================
>>To unsubscribe from this mailing list,
>>please see the instructions at
>>http://www.checkpoint.com/services/mailing.html
>>=================================================
>>If you have any questions on how to change your
>>subscription options, email
>>[email protected]
>>=================================================
>
>_________________________________________________________________
>The new MSN 8: advanced junk mail protection and 2 months FREE*
>http://join.msn.com/?page=features/junkmail
>
>=================================================
>To set vacation, Out-Of-Office, or away messages,
>send an email to [email protected]
>in the BODY of the email add:
>set fw-1-mailinglist nomail
>=================================================
>To unsubscribe from this mailing list,
>please see the instructions at
>http://www.checkpoint.com/services/mailing.html
>=================================================
>If you have any questions on how to change your
>subscription options, email
>[email protected]
>=================================================
_________________________________________________________________
Add photos to your e-mail with MSN 8. Get 2 months FREE*. http://join.msn.com/?page=features/featuredemail
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 08:56:55 -0500
From: Daniel Samaan <[email protected]>
Subject: SecurID with ACE
I'm looking for documentation and/or whitepapers that state NG FP3/FP4 is compatible with ACE 3 or 4. I know it works for Ace 5. Has anyone have this running in production today or has a URL link available? thanks in advance
Daniel Samaan
Technical Security Consultant
CCSP, CCSE, CCNA, CCA, MCSE+I
Cell:[email protected]
---------------------------------------------------------------------
Forsythe Solutions
5440 W. Fargo Avenue
Skokie, IL 60077
www.forsythesolutions.com
Building cost-effective IT infrastructure that organizations trust.
--------------------------------------------------------------------------------------------------------------------
This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the originator of the message. This footer also confirms that this email message has been scanned for the presence of computer viruses.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 10:28:08 -0400
From: Michael Belan <[email protected]>
Subject: Re: NAT Hide failure reported in logs
Hello again!
After consulting Nokia support, I applied HFA313 to my firewall, and that appears to have solved the problem. Unfortunately, I have no further information on the actual cause of the problem. I noticed that others reported the same problem, but nobody noted a solution, so I hope this helps.
Mike
-----Original Message-----
From: Michael Belan
Sent: Thursday, May 22, 2003 6:08 PM
To: [email protected]
Subject: [FW-1] NAT Hide failure reported in logs
I recently noticed some curious entries for dropped packets in my logs. No source or destination info is given, interface information is listed as "daemon," and the message info states
"NAT Hide failure: no ports available to perform hide operation."
The following error also appears in /var/log/messages:
[LOG_CRIT] kernel: FW-1: fw_xlate_anticipate: fwx_anticipate_server_side failed.
I notice no symptoms other than the log messages. Performance has not suffered.
Has anyone seen this before? Please advise...
Thanks,
Mike
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 16:53:12 +0100
From: [email protected]
Subject: Cluster problems on Nokia with FP3
I have been told that I should not use FP3 on a Nokia cluster because I = will 'have problems'- but can not find any information to explain why.
Does anyone know if this is correct, and if so, why? Maybe they are = referring to the issue described in "Resolution 15201: Can't initiate = connections from the cluster members when IPSO clustering is active." = which appears to have a straight forward fix.
Also I've been told to turn off 'ifwd'? Should I do this?, and if so, = why?
Thanks in advance,
C.
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
If you have any questions on how to change your
subscription options, email
[email protected] =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
------------------------------
Date: Thu, 17 Jul 2003 12:05:36 -0400
From: Scott Friedman <[email protected]>
Subject: Re: SecurID with ACE
I have a client that is using Ace 4 and they have CheckPoint NG FP3 running On Nokia's.. Using SecurID authentication for SecuRemote, works great!
Scott Friedman
Security Engineer - NG CCSE
[email protected]
Advanced Network Solutions
1750 S. Telegraph Rd Suite 100
Bloomfield Hills, MI 48302www.advnetworks.com
-----Original Message-----
From: Daniel Samaan [mailto:[email protected]]
Sent: Thursday, July 17, 2003 9:57 AM
To: [email protected]
Subject: [FW-1] SecurID with ACE
I'm looking for documentation and/or whitepapers that state NG FP3/FP4 is compatible with ACE 3 or 4. I know it works for Ace 5. Has anyone have this running in production today or has a URL link available? thanks in advance
Daniel Samaan
Technical Security Consultant
CCSP, CCSE, CCNA, CCA, MCSE+I
Cell:[email protected]
---------------------------------------------------------------------
Forsythe Solutions
5440 W. Fargo Avenue
Skokie, IL 60077
www.forsythesolutions.com
Building cost-effective IT infrastructure that organizations trust.
----------------------------------------------------------------------------
----------------------------------------
This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the originator of the message. This footer also confirms that this email message has been scanned for the presence of computer viruses.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 17:32:51 +0100
From: Philip Hayward <[email protected]>
Subject: Re: Cluster problems on Nokia with FP3
I have a pair of IP330s IPSO 3.6 FCS6 running in cluster with FP3 without any problems or disabling anything. I couldn't get it to work reliably until I got HFA-308 out of Nokia though.
Honestly, it can work!
Phil
-----Original Message-----
From: [email protected] [mailto:[email protected]]
Sent: 17 July 2003 16:53
To: [email protected]
Subject: [FW-1] Cluster problems on Nokia with FP3
I have been told that I should not use FP3 on a Nokia cluster because I will 'have problems'- but can not find any information to explain why.
Does anyone know if this is correct, and if so, why? Maybe they are referring to the issue described in "Resolution 15201: Can't initiate connections from the cluster members when IPSO clustering is active." which appears to have a straight forward fix.
Also I've been told to turn off 'ifwd'? Should I do this?, and if so, why?
Thanks in advance,
C.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 10:03:55 -0700
From: Yim Lee <[email protected]>
Subject: Re: VPN-1 SecuRemote with PPPoE
In 4.0, I had to use RASPPPOE to make the connection
then use Securemote to establish the VPN tunnel. In
4.0, Securemote did not supported PPPOE or it did not
work. You might want to establish you DSL connection
first and then the VPN tunnel.
HTH,
Yim
--- Attila Takács <[email protected]> wrote:
> I try to reisert my problem, in hope that anybody
> can answer:
> ********************************************
> Hi All!
>
> I'm new to the list, so I don't know, whether
> anybody has came accross the problem, that has bee
> brought up by one of our users.
> I paste the excerpt of his letter:
>
> > I've tried using VPN-1 Securemote to
> communicate with a secure
> > host via the Internet. My connection is an ADSL
> (Asymmetric Digital
> > Subscriber Lin), and I have to use PPP over
> Ethernet protocol. But after
> > connecting, and having typed the required
> password, i receive an
> > error message -- This is a non secure protocol...
> -- and the
> > connection ends.
> >
> > In this case what is the correct way to
> make a live
> > connection?
>
> Can anybody help?
>
> Regards:
> Attila Takács
> ********************************************
>
>
>
**********************************************************************
> This e-mail and any attached files are confidential
> and/or covered by
> legal, professional or other privilege. If you are
> not the addressee,
> any disclosure, reproduction, copying, distribution,
> or other
> dissemination or use of this communication is
> strictly prohibited.
> If you have received this transmission in error
> please notify
> Kereskedelmi es Hitelbank (K&H) immediately. K&H
> does not accept
> liability for the correct and complete transmission
> of the information,
> nor for any delay or interruption of the
> transmission, nor for damages
> arising from the use of or reliance on the
> information.
>
> All e-mail messages addressed to, received or sent
> by K&H or
> K&H employees are deemed to be professional in
> nature. Accordingly,
> the sender or recipient of these messages agrees
> that they may be
> read by other K&H employees than the official
> recipient or sender
> in order to ensure the continuity of work-related
> activities and allow
> supervision thereof.
>
**********************************************************************
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 10:11:12 -0700
From: Yim Lee <[email protected]>
Subject: Re: X11 Via VPN
I believe the suggestion in the past is to use ssh to
the web server and tunnel the X11 traffic back through
the ssh tunnel.
Yim
--- Reinhard Stich <[email protected]>
wrote:
> At 20:02 16.07.2003 -0300, you wrote:
> >Hy Guys,
> >
> >We have a problem. We need access a Sun Solaris in
> our web-hosting to
> >install a software throught vpn.
> >The problem is our FW1 NG SP1 is dropping X service
> giving the followind
> >error: encryption failure: mismatch encryption in
> rule configuration when
> >the packet returns.
> >Does anyone knows how to do the vpn accept this
> service? Does this
> >services works with VPN?
>
> hi,
>
> yes - X11 does work with securemote, but you have to
> create a special
> service in order to make it work (see checkpoint knowledge-base for
> details).
>
> cheers
> reinhard
>
> >THe other FW1 NG is with SP2.
> >
> >Regards,
> >
> >Eudres Ernesto
> >Infostrata S.A.
> >Rio de Janeiro, Brazil
> >
> >=================================================
> >To set vacation, Out-Of-Office, or away messages,
> >send an email to [email protected]
> >in the BODY of the email add:
> >set fw-1-mailinglist nomail
> >=================================================
> >To unsubscribe from this mailing list,
> >please see the instructions at
> >http://www.checkpoint.com/services/mailing.html
> >=================================================
> >If you have any questions on how to change your
> >subscription options, email
> >[email protected]
> >=================================================
>
> --
> Reinhard Stich, ASSIST
> [email protected]
> Internet Security AG, 1190 Wien, Nussdorfer Laende
> 29-33
> Tel: +43 1 370 94 40 RS784-RIPE Fax: +43 1 370 94
> 40-10
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 19:18:34 +0200
From: [email protected]
Subject: IPSEC tunnel between Cisco Router and CheckPoint NG
Hi to all,
Someone knows how to do a tunnel between a Cisco Router and CheckPoint Firewall (Next Generation FP3).
I need to do it and i don´t know how to.
Thanks very much.
__________________________________________________________________
Con Vodafone Mail puedes gestionar todos tus mensajes de correo electrónico, faxes, SMS y mensajes de voz de una forma cómoda y sin cuotas. Actívalo ya en http://www.vodafone.es/vodafonemail
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 13:43:07 -0500
From: Edward Greenspan <[email protected]>
Subject: Cluster problems on Nokia with FP3
FP3 on Nokia with VRRP works fine, however you MUST have the HFA308 applied as there a major problems with base FP3 and state sync.
==========================
Edward Greenspan
----- Forwarded by Edward Greenspan/PDC/Pactiv on 07/17/2003 12:45 PM -----
|---------+-------------------------------------------->
| | [email protected] |
| | Sent by: Mailing list for |
| | discussion of Firewall-1 |
| | <[email protected]|
| | KPOINT.COM> |
| | |
| | |
| | 07/17/2003 10:53 AM |
| | Please respond to Mailing list |
| | for discussion of Firewall-1 |
| | |
|---------+-------------------------------------------->
>------------------------------------------------------------------------------------------------------------------------------|
| |
| To: [email protected] |
| cc: (bcc: Edward Greenspan/PDC/Pactiv) |
| Subject: [FW-1] Cluster problems on Nokia with FP3 |
>------------------------------------------------------------------------------------------------------------------------------|
I have been told that I should not use FP3 on a Nokia cluster because I will 'have problems'- but can not find any information to explain why.
Does anyone know if this is correct, and if so, why? Maybe they are referring to the issue described in "Resolution 15201: Can't initiate connections from the cluster members when IPSO clustering is active." which appears to have a straight forward fix.
Also I've been told to turn off 'ifwd'? Should I do this?, and if so, why?
Thanks in advance,
C.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 12:56:20 -0700
From: "Burton, Chris" <[email protected]>
Subject: State Synchronization
I am wondering how many NG FP3 users running the Firewalls in a load sharing cluster with either ClusterXL or a 3rd party load sharing product have experienced issues with the State Synchronization just failing with no apparent reason and then not being able to restore to proper working order. =20 Firewall-1/VPN-1 NG FP3 Rainfinity Rainwall 3.1SP2 Redhat Linux 7.2/Kernel 2.4.9-31 Chris C. Burton Network Engineer Walt Disney Internet Group: Network Services
Work:Mobile:=20
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
If you have any questions on how to change your
subscription options, email
[email protected] =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D
------------------------------
Date: Thu, 17 Jul 2003 15:14:08 -0500
From: Daniel Samaan <[email protected]>
Subject: Re: SecurID with ACE
do you know the upgrade procedure from 3.3 to 5.x?
Daniel Samaan
Technical Security Consultant
CCSP, CCSE, CCNA, CCA, MCSE+I
Cell:[email protected]
---------------------------------------------------------------------
Forsythe Solutions
5440 W. Fargo Avenue
Skokie, IL 60077
www.forsythesolutions.com
Building cost-effective IT infrastructure that organizations trust.
|---------+-------------------------------------------->
| | Scott Friedman |
| | <[email protected]> |
| | Sent by: Mailing list for |
| | discussion of Firewall-1 |
| | <[email protected]|
| | KPOINT.COM> |
| | |
| | |
| | 07/17/2003 11:05 AM |
| | Please respond to Mailing list |
| | for discussion of Firewall-1 |
| | |
|---------+-------------------------------------------->
>----------------------------------------------------------------------------------------------|
| |
| To: [email protected] |
| cc: |
| Subject: Re: [FW-1] SecurID with ACE |
>----------------------------------------------------------------------------------------------|
I have a client that is using Ace 4 and they have CheckPoint NG FP3 running On Nokia's.. Using SecurID authentication for SecuRemote, works great!
Scott Friedman
Security Engineer - NG CCSE
[email protected]
Advanced Network Solutions
1750 S. Telegraph Rd Suite 100
Bloomfield Hills, MI 48302www.advnetworks.com
-----Original Message-----
From: Daniel Samaan [mailto:[email protected]]
Sent: Thursday, July 17, 2003 9:57 AM
To: [email protected]
Subject: [FW-1] SecurID with ACE
I'm looking for documentation and/or whitepapers that state NG FP3/FP4 is compatible with ACE 3 or 4. I know it works for Ace 5. Has anyone have this running in production today or has a URL link available? thanks in advance
Daniel Samaan
Technical Security Consultant
CCSP, CCSE, CCNA, CCA, MCSE+I
Cell:[email protected]
---------------------------------------------------------------------
Forsythe Solutions
5440 W. Fargo Avenue
Skokie, IL 60077
www.forsythesolutions.com
Building cost-effective IT infrastructure that organizations trust.
----------------------------------------------------------------------------
----------------------------------------
This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the originator of the message. This footer also confirms that this email message has been scanned for the presence of computer viruses.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
--------------------------------------------------------------------------------------------------------------------
This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the originator of the message. This footer also confirms that this email message has been scanned for the presence of computer viruses.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 17:39:16 -0400
From: "Covington, Chris" <[email protected]>
Subject: logical server how to
Hi all,
In the year or more I've been on this list I've never heard anyone discuss logical servers. Anyway, I'm interested in creating a logical SMTP server with my Secureplatform AI machine. I tried creating the logical server of type "Other," assigning the SMTP group (none of the machines inside this group were NATed - they all have private IPs), and giving it an external (public) IP address. I then created a Security rule to allow SMTP to the Logical Server. However, it seems I can't ping or connect to the logical server IP address in any way, even internally.
FWIW, I have bi-directional NAT, Translate destination on client side and Automatic ARP configuration enabled.
What is the proper way to use a logical server? Does each member of the logical server group need an external address as well?
Chris
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 20:52:33 -0400
From: "Michael J. Semaniuk" <[email protected]>
Subject: Re: logical server how to
The ConnectControl module is a for-fee license & is not included with a typical firewall/management license. So, if you want this functionality, you'll have to pony up some $$$ for it. And, for what it's worth, I would use multiple MX records to balance incoming SMTP servers. If you want to balance outbound SMTP, I would try round robin DNS. You'll probably get just as even a distribution & you won't have to pay for it. The health checking of the Connect Control module isn't as great as you would expect it to be. As long as the machine can be pinged, it will be considered up (of course this all depends on the algorithm & the type of balancing you're doing. Just my 2 cents.
-Mike
----- Original Message -----
From: "Covington, Chris" <[email protected]>
To: <[email protected]>
Sent: Thursday, July 17, 2003 5:39 PM
Subject: [FW-1] logical server how to
> Hi all,
>
> In the year or more I've been on this list I've never heard anyone
> discuss logical servers. Anyway, I'm interested in creating a logical
> SMTP server with my Secureplatform AI machine. I tried creating the
> logical server of type "Other," assigning the SMTP group (none of the
> machines inside this group were NATed - they all have private IPs),
> and giving it an external (public) IP address. I then created a
> Security rule to allow SMTP to the Logical Server. However, it seems
> I can't ping or connect to the logical server IP address in any way,
> even internally.
>
> FWIW, I have bi-directional NAT, Translate destination on client side
> and Automatic ARP configuration enabled.
>
> What is the proper way to use a logical server? Does each member of
> the logical server group need an external address as well?
>
> Chris
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Fri, 18 Jul 2003 11:39:44 +1000
From: Ayden Nash <[email protected]>
Subject: Re: upgrade_export error
Perhaps re-initialising the certificates from the CA, then doing the put key.
-A
-----Original Message-----
From: Steck, Steffen M. [mailto:[email protected]]
Sent: Wednesday, July 16, 2003 11:26 PM
To: [email protected]
Subject: Re: [FW-1] upgrade_export error
Okay I solved this, I updated to Solaris 8 and now the upgrade_export works except an error with a temp dir. But this error does not matter. Import also works. Now I have another question: Since the mgmt is now new hardware with different hostname and different IP, I edited the masters file on the 4.1 modules and added the new NG mgmt. Then I can install policies from the GUI. But when I bounce a module, the module is not able to fetch the policy from the new mgmt (it still can fetch it from the old mgmt). Doing putkeys from the 4.1 module to the mgmt also does does not help. IS this by design or am I making a mistake somewhere?
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 19:31:07 -0700
From: Skar <[email protected]>
Subject: Re: HFA-315
ftp.checkpoint.com/outgoing/support/HFA_316....
--- "Desmeules, Simon" <[email protected]> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> You need CSP access and the build does not change
> regardless of OS.
>
>
http://www.checkpoint.com/techsupport/csp/downloads.html
>
> regards ;)
>
> Simon.
> - ----------
> Simon Desmeules
> http://www.digidyne.ca
> mailto :[email protected]
> - ----------
> Contact me for you Check Point Training
> View my co-authoring project at Syngress
> http://www.syngress.com/catalog/sg_main.cfm?pid=1922
> - ----------
> DigiDyne Inc.
> 420 Armand-Frappier suite 320
> Laval, Quebec
> H7V 4B4
> Text 225
> F> - ----------
> Public Key found on www.keyserver.net
> - ----------
> - ----- Original Message -----
> From: "PATENAUDE, PATRICK"
> <[email protected]>
> To: <[email protected]>
> Sent: Monday, July 14, 2003 2:07 PM
> Subject: [FW-1] HFA-315
>
>
> > Hi all, I have access to Checkpoint's support
> website, and I hear
> > everyboy talking about HFA-315. Can anybody point
> me in the right
> > direction??? Or is this a patch for HA that
> changes number depending on
> > the OS that you HAVE.
> >
> > =================================================
> > To set vacation, Out-Of-Office, or away messages,
> > send an email to
> [email protected]
> > in the BODY of the email add:
> > set fw-1-mailinglist nomail
> > =================================================
> > To unsubscribe from this mailing list,
> > please see the instructions at
> > http://www.checkpoint.com/services/mailing.html
> > =================================================
> > If you have any questions on how to change your subscription
> > options, email [email protected]
> > =================================================
> >
> -----BEGIN PGP SIGNATURE-----
> Version: PGP 8.0
>
>
iQA/AwUBPxL6bvB+/w2Wb6b+EQKJGwCfVqp3UDjqwldLWTTMPUP2wwfNgGgAn3D1
> In70MHHpHbcMMNXpNf81G3sY
> =VCBi
> -----END PGP SIGNATURE-----
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
=====
------------
Sick Boy
__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
Date: Thu, 17 Jul 2003 19:36:30 -0700
From: Skar <[email protected]>
Subject: Re: NG AI - comments?
I advise u not to install the AI before its first
service pack.
Note: Just count the number of fixes of FP3, even
there are fixes for fixes(!).
--- [email protected] wrote:
> I have not seen a lot of comments on NG AI since its
> release. Is this
> because it is stable or because people are not
> willing to move to it yet? I
> am wanting to upgrade to NG and FP3 looks fairly
> stable at this point, but
> why go through the hassle, if AI is out now? What
> are other 4.1 folks
> planning?
>
> -Aaron
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
=====
------------
Sick Boy
__________________________________
Do you Yahoo!?
SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected] =================================================
------------------------------
End of FW-1-MAILINGLIST Digest - 16 Jul 2003 to 17 Jul 2003 (#2003-126)
***********************************************************************
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
|
|
