It looks like it is part of UserAuthority. Are you using it? If not, try this:
Disabling netso daemon (netsod) Solution ID: 10043.0.7189972.2661608
Error: "Could not open file /opt/CPfw1-50/conf/netso.ini"
Solution
To disable the netso daemon:
1. Stop the FireWall-1 services by executing the following command from the $FWDIR/bin directory:
fwstop
2. Delete the following line from the file $FWDIR/conf/fwauthd.conf:
19190 netsod wait 19190
3. Restart the FireWall-1 services by executing the following command from the $FWDIR/bin directory:
fwstart
4. Install the policy
Note: The changes should be made on the FireWall module if errors pertaining to netsod appear in the messages log. The changes should only be made if not using the UserAuthority API.
Once you get this working, it would be great if you could post a message as to how you finally did it.
Ray
From: Kevin Peuhkurinen <[EMAIL PROTECTED]> Reply-To: Mailing list for discussion of Firewall-1 <[EMAIL PROTECTED]> To: [EMAIL PROTECTED] Subject: [FW-1] OWA/Clientless/HTTPS ARGH! Date: Tue, 27 Apr 2004 11:47:41 -0400
Thanks to everyone who has tried to help so far in my attempt to get clientless VPN to SSL-protected OWA.
I added my internal Win2K CA server as a CA in SmartDashboard. I then created a webserver certificate for the firewall with the friendly name "owacert". I then edited the fwauth.conf file on the firewall and added:
443 fwssd in.ahttpd wait 0 eb:owacert
After bouncing the fw-1 service, I see a bunch of errors in the ahttpd.elg file:
new_connection_part_2 ssl error code -3 (ERR_SSL_ERR) could not open file c:\winnt\fw1\r55\conf\netso.ini
I've run tcpdump on the line between the fw and the OWA server and there is *no* communication between them whatsoever during the fw-1 startup or thereafter, so I have to conclude that my entire problem is with the lack of a "netso.ini" file.
Any ideas? Please?
Thanks, Kevin
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
_________________________________________________________________ Lose those love handles! MSN Fitness shows you two moves to slim your waist. http://fitness.msn.com/articles/feeds/article.aspx?dept=exercise&article=et_pv_030104_lovehandles
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
