The Checkpoint Cluster Control Protocol (CCP) uses UDP port 8116. For your Clustered FW's to work correctly, you need to allow this traffic through.
See Checkpoint Cluster XL doco, page 9 http://www.checkpoint.com/support/downloads/docs/firewall1/r55/ClusterXL .pdf Cheers, Brad Foy -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Israel Novelo Zel Sent: Friday, 1 July 2005 3:36 AM To: [email protected] Subject: Re: [FW-1] Nokia trouble Hi folks: I have a problem, i have a High Available CheckPoint Firewall whit 2 redundant servers, but some times this crash my Switch, because this cause a excessive traffic by UDP 8116, between 2 interfaces , i been look by this and foud that the MAC that use is: protocol, UDP 8116, used specific MAC adresses like 0:0:0:0:fe:0 (for the primary) and 0:0:0:0:fe:1 (for the backup).. we are filter this protocol ( UDP 8116 ), but we still have problem.. any ideas??? Thanks !!! ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ************************************************************************ The information in this e-mail together with any attachments is intended only for the person or entity to which it is addressed and may contain confidential and/or privileged material. Any form of review, disclosure, modification, distribution and/or publication of this e-mail message is prohibited. If you have received this message in error, you are asked to inform the sender as quickly as possible and delete this message and any copies of this message from your computer and/or your computer system network. ************************************************************************ ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
