I have seen in the past were the last line of the file actually has to contain a <CR>. You might try editing the ipassignment.conf file and placing one after util2
Regards, Chris -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of RISPAL Yannick - NTR ( [EMAIL PROTECTED] ) Sent: Wednesday, April 28, 2004 11:56 AM To: [EMAIL PROTECTED] Subject: [FW-1] ipassignment.conf problem Since a couple of days I try to implement "ip per user" for remote acces vpn user with office mode. The office mode feature seen to operate correctly, my users retrieved one ip address from the office mode ip pool define. Nevertheless my users never get the ip address define in the ipassignment.conf in the $FWDIR/conf directory on my firewall module. Until today, my firewall module and the smartconsole were R54 release. I have upgraded both of them to R55 to see if this would resolve the problem... It don't. But now I have the possibility to check the syntax of my file with "vpn afile_check ipassignment.conf detail" "vpn afile_check ipassignment.conf err" and "vpn afile_check ipassignment.conf warn". My ipassignment.conf : # # file: ipassignment.conf # # Gateway Type IP Address User Name # ====== ===== ========== =================== * addr 12.0.0.4, util1 * addr 12.0.0.5, util2 Here are the results of these commands : [conf]# vpn ipafile_check ipassignment.conf err Reading file records... [conf]# vpn ipafile_check ipassignment.conf warn Reading file records... [conf]# vpn ipafile_check ipassignment.conf detail Reading file records... Line 0001 is a comment (starts with #) Line 0002 is a comment (starts with #) Line 0003 is a comment (starts with #) Line 0004 is a comment (starts with #) Line 0005 is a comment (starts with #) line 0006 is OK. User="util1" line 0007 is OK. User="util2" Could not read line 8 in conf file - maybe EOF So, it seem that there is no problem but I don't know if the last line is good or not. For me, line 8 in ipassignment.conf doesn't exist (file stop at line 7). So I don't understand the last line and don't know if It's the cause of the problem. If someone can help and give me the right on the ipassignment.conf file ( owner and right in fact ) I could also check that point on my server. Thanks, Yannick Rispal Network Engineer Atos Origin 64 rue du 8 mai 1945 92025 Nanterre Cedex France Mail : <mailto:[EMAIL PROTECTED]> mailto:[EMAIL PROTECTED] Ce message et les pi�ces jointes sont confidentiels et r�serv�s � l'usage exclusif de ses destinataires. Il peut �galement �tre prot�g� par le secret professionnel. Si vous recevez ce message par erreur, merci d'en avertir imm�diatement l'exp�diteur et de le d�truire. L'int�grit� du message ne pouvant �tre assur�e sur Internet, la responsabilit� du groupe Atos Origin ne pourra �tre recherch�e quant au contenu de ce message. Bien que les meilleurs efforts soient faits pour maintenir cette transmission exempte de tout virus, l'expediteur ne donne aucune garantie � cet �gard et sa responsabilit� ne saurait �tre recherch�e pour tout dommage r�sultant d'un virus transmis. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
