-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Topic #1:
The same happens on R54, when I'm using the commercial version of ssh client. It only works correct with putty and the FW recognizes the service as SSH2 http://www.chiark.greenend.org.uk/~sgtatham/putty/ Topic #2: My knowledge is that you need to have a SmartCenter installed and licensed, either on the same or another machine to run FW-1 correctly. |-----Original Message----- |From: Mailing list for discussion of Firewall-1 |[mailto:[EMAIL PROTECTED] On Behalf |Of Automatic digest processor |Sent: Monday, March 15, 2004 9:00 AM |To: Recipients of FW-1-MAILINGLIST digests |Subject: FW-1-MAILINGLIST Digest - 12 Mar 2004 to 14 Mar 2004 |(#2004-72) | |There are 6 messages totalling 282 lines in this issue. | |Topics of the day: | | 1. SSH version 1.x is not allowed | 2. Firewall NG GUI Rules Editor | 3. Problems with BACKUP on SecurePlatform R55 | 4. From NG FP2 to NG AI R55 : Nat issues | 5. FTP | 6. FP4 with NG-AI R54 | |================================================= |To set vacation, Out-Of-Office, or away messages, |send an email to [EMAIL PROTECTED] |in the BODY of the email add: |set fw-1-mailinglist nomail |================================================= |To unsubscribe from this mailing list, |please see the instructions at |http://www.checkpoint.com/services/mailing.html |================================================= |If you have any questions on how to change your |subscription options, email |[EMAIL PROTECTED] |================================================= | |---------------------------------------------------------------------- | |Date: Sun, 14 Mar 2004 05:58:00 -0600 |From: Daniel Samaan <[EMAIL PROTECTED]> |Subject: SSH version 1.x is not allowed | |running NG AI R54 and I have a rule to allow SSH2 (using |SecureShell 3.2.3 |client and server) from an internal host to a server on the DMZ. The |firewall logs show and accept and then rejects right after it |. The info |state 'SSH version 1.x is not allowed.' and the source service |is showing |up as SSH2 in the log as well. | |It only works when I have ANY as the service. | |Any thoughts.... | |================================================= |To set vacation, Out-Of-Office, or away messages, |send an email to [EMAIL PROTECTED] |in the BODY of the email add: |set fw-1-mailinglist nomail |================================================= |To unsubscribe from this mailing list, |please see the instructions at |http://www.checkpoint.com/services/mailing.html |================================================= |If you have any questions on how to change your |subscription options, email |[EMAIL PROTECTED] |================================================= | |------------------------------ | |Date: Sun, 14 Mar 2004 17:58:29 +0100 |From: leke Osiname <[EMAIL PROTECTED]> |Subject: Firewall NG GUI Rules Editor | |Hi, | |I have a license for Checkpoint VPN/Firewall 1 NG that |apparently does not |cover the SmartCentre server. | |I was wondering if there was any other way of setting up rules on the |Firewall without using the SmartCentre server and Smart Console tools. | |I know this is a long shot, but it's my only shot since I need |the system to |be up by Monday morning. Else I'll go the linux iptables way |till we buy a |license to cover the smartcenter. | |Suggestions anyone? | |Leke | |_________________________________________________________________ |Add photos to your e-mail with MSN 8. Get 2 months FREE*. |http://join.msn.com/?page=features/featuredemail | |================================================= |To set vacation, Out-Of-Office, or away messages, |send an email to [EMAIL PROTECTED] |in the BODY of the email add: |set fw-1-mailinglist nomail |================================================= |To unsubscribe from this mailing list, |please see the instructions at |http://www.checkpoint.com/services/mailing.html |================================================= |If you have any questions on how to change your |subscription options, email |[EMAIL PROTECTED] |================================================= | |------------------------------ | |Date: Sun, 14 Mar 2004 20:47:39 +0100 |From: "fw-1.group" <[EMAIL PROTECTED]> |Subject: Re: Problems with BACKUP on SecurePlatform R55 | |Hi Matt, |there is a known problem with Splat Backup and a fix is available in |software subscription download area. |After applying this HF my Backup/Restore Problems vanished. |Regards |Ulli | |On Mar 12, 2004, at 8:01 PM, Mateo Cabrera - Easynet SRL wrote: | |> Has anybody have some problem to make a restore from CLI or |> WebInterface on |> SecurePlatform???????? |> |> Thanks a lot |> |> |> /matt |> |> ================================================= |> To set vacation, Out-Of-Office, or away messages, |> send an email to [EMAIL PROTECTED] |> in the BODY of the email add: |> set fw-1-mailinglist nomail |> ================================================= |> To unsubscribe from this mailing list, |> please see the instructions at |> http://www.checkpoint.com/services/mailing.html |> ================================================= |> If you have any questions on how to change your |> subscription options, email |> [EMAIL PROTECTED] |> ================================================= | |================================================= |To set vacation, Out-Of-Office, or away messages, |send an email to [EMAIL PROTECTED] |in the BODY of the email add: |set fw-1-mailinglist nomail |================================================= |To unsubscribe from this mailing list, |please see the instructions at |http://www.checkpoint.com/services/mailing.html |================================================= |If you have any questions on how to change your |subscription options, email |[EMAIL PROTECTED] |================================================= | |------------------------------ | |Date: Sun, 14 Mar 2004 17:46:36 -0300 |From: [EMAIL PROTECTED] |Subject: From NG FP2 to NG AI R55 : Nat issues | | Hi all | | Scenario : | - Management server migrated from NG FP2 on Windows to SPLAT R55 | using import/export utilities ( version R55 ). | - Inspection module still running NG FP2 on AIX | | To fix the constant internal nat issue, i need to allow |bi-directional Nat | (global properties->Nat->Auto Nat rules). | | What�s happening is that none automatic nat rule is |working... all outbound | traffic originated from a host with static nat on goes as my |last manual NAT | hide rule : | | my_internal_netblock -> any -> |xlatesrc:my_internal_netblock_nat(hide) | | I i disable this rule all auto nat rules starts to work but |no direct connection | to internet is allowed from hosts that dont have static nat . | | I also tried to set hide nat on my_internal_netblock object |... it adds 2 rules | at the end : | | my_internal_netblock -> my_internal_netblock -> any -> |xlatesrc:original | xlatedest: original | my_internal_netblock -> any -> |xlatesrc:my_internal_netblock_nat(hide) | | | Any1 had this problem ? | Any clue ? | |[]'S | |------------------------------------ | Antonio Costa | Odebrecht Engenharia e Construcao | Infra-Estrutura de Rede e Seguranca | [EMAIL PROTECTED] | Tel.: +55-11-3443-9813 | Fax.: +55-11-3443-9618 | |================================================= |To set vacation, Out-Of-Office, or away messages, |send an email to [EMAIL PROTECTED] |in the BODY of the email add: |set fw-1-mailinglist nomail |================================================= |To unsubscribe from this mailing list, |please see the instructions at |http://www.checkpoint.com/services/mailing.html |================================================= |If you have any questions on how to change your |subscription options, email |[EMAIL PROTECTED] |================================================= | |------------------------------ | |Date: Mon, 15 Mar 2004 10:39:19 +0600 |From: Nishantha Karawita <[EMAIL PROTECTED]> |Subject: FTP | |Good Day to you all, |Could any one kindly let me know the differnece between ftp |and ftp-bidir |and also ftp-pasv. |What would I have to allow for those who want to ftp to their |servers from |their premises. |We have a nortel box( ASF ver 3.5.1.10d) and NG-AI running on |both emc and |fw. |Best Regards | |*************************************************************** |*********************************** |The contents of this email and any attachments are confidential. |It is intended for the named recipient(s) only. |If you have received this email in error please notify the |system manager or the |sender immediately and do not disclose the contents to anyone |or make copies. | |** SLT IT Security System scanned this email for viruses, |vandals and malicious |content ** |*************************************************************** |*********************************** | |================================================= |To set vacation, Out-Of-Office, or away messages, |send an email to [EMAIL PROTECTED] |in the BODY of the email add: |set fw-1-mailinglist nomail |================================================= |To unsubscribe from this mailing list, |please see the instructions at |http://www.checkpoint.com/services/mailing.html |================================================= |If you have any questions on how to change your |subscription options, email |[EMAIL PROTECTED] |================================================= | |------------------------------ | |Date: Mon, 15 Mar 2004 10:44:59 +0600 |From: Nishantha Karawita <[EMAIL PROTECTED]> |Subject: Re: FP4 with NG-AI R54 | |Good Day to you all, |We have an ASF (with ASF ver 3.5.1.10d and NG-AI). EMC also has NG-AI. |We have an Oracle DB in the secured segment. When trying to |connect to this |from outside, we experince a time out. |When the oracle client is within the secured segment, |everything works fine. |Could any one assist me. | |Regards | |*************************************************************** |*********************************** |The contents of this email and any attachments are confidential. |It is intended for the named recipient(s) only. |If you have received this email in error please notify the |system manager or the |sender immediately and do not disclose the contents to anyone |or make copies. | |** SLT IT Security System scanned this email for viruses, |vandals and malicious |content ** |*************************************************************** |*********************************** | |================================================= |To set vacation, Out-Of-Office, or away messages, |send an email to [EMAIL PROTECTED] |in the BODY of the email add: |set fw-1-mailinglist nomail |================================================= |To unsubscribe from this mailing list, |please see the instructions at |http://www.checkpoint.com/services/mailing.html |================================================= |If you have any questions on how to change your |subscription options, email |[EMAIL PROTECTED] |================================================= | |------------------------------ | |End of FW-1-MAILINGLIST Digest - 12 Mar 2004 to 14 Mar 2004 (#2004-72) |********************************************************************** | -----BEGIN PGP SIGNATURE----- Version: PGP 8.0.3 iQA/AwUBQFX/M8FB+kC9dATQEQJA3wCfUWHryRLxvLZokAGUYZue+2euEjMAoN2y S3/FhrjFeDx9vB+7HzlJgX5i =5WhF -----END PGP SIGNATURE----- ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
