I think that the connectivity is working fine. Tunel_test is also arriving to
gateways because sometimes SecureClient connects to the gateway
pozdrawiam
Sławomir Głowacki
-Original Message-
From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On
Behalf Of Javier
Hi All,
I currently have a splat smartcentre mgmt NGX Express, which is managing
a couple of standalone NGX vpn-1 modules, also on splat. All works ok.
The Question: Is it possible to also manage - ie push the policy, user
database etc... another standalone express vpn module running on sun
It doesn't matter which OS you are running the management on. You can
always push policy on any VPN-1 module (sun, ipso, splat, windows, linux
etc).Ramki
Mark Pace Balzan wrote:
Hi All,
I currently have a splat smartcentre mgmt NGX Express, which is managing
a couple of standalone NGX
Morning all.
I have been tasked with the job of replacing a failed Nokia appliance in a
IPSO cluster.
I am running into problems when trying to rejoin the node into the cluster
through IPSO, the error in the FW log says 'cluster member IP is being
spoofed'
I have managed to reestablish SIC OK,
Did see that on SecureKnowledge, problem with that is that the multicast
packets are not going through any router, and just on a flat vlan network.
So the arriving packet would still have a TTL of 255.
Unless I am missing something ?
Cheers
On 03/04/06, Mark Elsen [EMAIL PROTECTED] wrote:
The Question: Is it possible to also manage - ie push the policy, user
database etc... another standalone express vpn module running on sun
solaris (instead of splat) from the splat express smartcentre mgmt
server ?
Sure Mark, the only limitation within diferent systems is related to
anyone know of a vpn client that works with checkpoint that i can use to
VPN in from a linux laptop? Laptop is a CentOS 4.3 machine so runs a 2.6
kernel
thanks
=
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL
Dear FW mailing List,
I have a management station with NG with Application Intelligence R55
installed on a Secure Plateform.
Every week I dump the entire disk and save it outside our premisses.
What I would like to do every night is backup only the files containing the
objects, rules, VPN
Vincent Ribeaud wrote:
Dear FW mailing List,
I have a management station with NG with Application Intelligence R55
installed on a Secure Plateform.
Every week I dump the entire disk and save it outside our premisses.
What I would like to do every night is backup only the files containing
Also, you want to create a secondary IP not a sub interface. With a sub
interface you'll have to enable tagging, etc, etc. You can add a
secondary IP to your current Ethernet interface on your router by
doing..
Conf t
Int ethernet 1
ip address 10.12.11.1 255.255.255.0 secondary..
-Original
So why don't you just remove the router, and on the other router change
the Ethernet IP subnet to match your firewall and be done with it.
Just because the ISP assigns you an IP address, doesn't necessarily mean
you have to use it. :)
-Original Message-
From: Mailing list for
Good afternoon list members,
I'm wondering if anyone can help me with an issue that has been
affecting us since our upgrade to NGX 2 months ago. Here is the
background on our environment that is effected.
We are running FireWall-1(R) NGX (R60) HFA_03, Hotfix 603 - Build 015
kernel: NGX (R60)
From past experiences with Juniper I would not recommend using there products.
I think that there support stinks as well, like garbage in NYC after a bad
rain storm and a couple days have past.
Mark Elsen [EMAIL PROTECTED] wrote:
Hi ,
We recently switched our CP Firewall environment, from a
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Hi everybody,
Does anyone know a way to install HFA 3 for Checkpoint NGX on a Nokia
IP265 diskless device ? As the release note quotes, there is no longer
script to run, but a file to rename to an already existing filename
should do the job.
But I
check your smartdefense settings for VOIP-H323...
--Loge VK
On 4/3/06, Caballero Carlos [EMAIL PROTECTED] wrote:
Hi folks,
I have a problem with a VOIP Traffic over my Checkpoint Fitrewall NGX
60, I'm receiving this error:
Number:536692
Date:3Apr2006
Hello,
If you have already done the basics I would upgrade the code if thats
possible.
Just out of curiosity, how many interfaces are on the firewalls in cluster ?
You are running the sync and cluster traffic on different interfaces correct ?
Did you make sure that the interfaces are
We had a similar issue and running a cprestart on the management station
fixed the time problem.
Jeremy Lieb CCSE-NG CCSE+NG
Firewall Administrator
Open Text Corporation
100 Tri-State Int'l Pkwy
Lincolnshire, IL 60069
-Original Message-
From: Mailing list for discussion of
Yeah, that's what I wanted to do, but they said they can't do it because
it's a switch and because it's not their IP space. I don't think they're
being difficult, probably a company policy or something.
Thanks for all of your help,
Ray
From: Lyons, Jon [EMAIL PROTECTED]
Reply-To: Mailing
It's resolved,
In the NGX 60 version of checkpoint firewall with cluster when you have
traffic between a cisco callmanager and VoIP gateway devices the
redirection traffic from the callmanager device is dropped, The smart
defense contribute to do this but I had unchecked all the settings and
That did it. Thanks.
Erik Decker
Network Administrator
Town of Normal
(309) 454-9515
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf Of Jeremy
Lieb
Sent: Monday, April 03, 2006 1:51 PM
To:
Joe,
Let me get this straight... Are you saying that Juniper TAC support is just
as bad, if
not worse, than Checkpoint TAC? I haven't dealt much with Juniper because I
only
have to manage two high-end AS-5200 boxes and I agree with you their TAC is
pretty bad but I think Checkpoint
21 matches
Mail list logo