OK, after playing around with this a little I have come up with a few questions. I was able to check the "Dynamic Address" box in the firewall properties. When I try to install policy it fails with an error "Reason: No IP address found on peer object definition, please make sure its IP address is properly configured." I have the gateway and management server on the same server.
After talking to Checkpoint support, I was told in order to make DAIP work I need to separate the gateway and management servers and setup SIC between the two. Now, to allow me to separate these I need to upgrade to the enterprise version of VPN/Firewall-1. Is this how everyone sees it? If it is true, I will have to look into one of the other products mentioned. I am just trying to get my facts straight. Thanks, Dean -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Joe Fox Sent: Wednesday, February 25, 2004 3:47 PM To: [EMAIL PROTECTED] Subject: Re: [FW-1] Dynamic Internet IP NIC for small office? Dean, NG/AI Supports DAIP. On the firewall object general properties, check the "Dynamic Address" check box. HTH Dean Sadler wrote: > Can Checkpoint VPN-1/Firewall-1 NG/AI have a NIC to the outside Internet > that is dynamic/DHCP? We are thinking about a remote office and wondering > if an Internet cable connection without a fixed IP from a local ISP would > work. For licensing, couldn't I assign it to a fixed IP in a DMZ? > > Dean > -- Joe Fox, CCSE+ Network Security Corp. http://www.nsec.net 716.692.8183 ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
