Hi Neil, On Fri, 2006-01-27 at 01:40 -0500, fwguru wrote: > Nico, > > Actually, sk11374 requires Expert (CSP) access.... Funny, huh? Anyway, the > artice doesn't say anything. Since I can't copy-paste that article here, I > can tell you it was last updated in Dec 04 and applies to NG as early as > FP1. Also says applies to Red Hat 6.1-7.0, Solaris and High Availability. > The sk article is listed as type: Bugs No Fix. :(
Yep, I got the article through my vendor, it basicaly says nothing at all actually :-( > After you reboot things are ok until about 2:00am the next morning? Are the > timezone and date set correctly? It doesn't happen every day (fortunately). So far it happened 3 times in the last few weeks. I'm sure the date and TZ are correct. I have another firewall with an identical setup (automated install so they should be exactly the same) which doesn't have the problem. However the second one is on an internal network while the one with the problem is facing the Internet. I'm wondering whether there is any network traffic that could trigger it. I'll try installing a sniffer in front of the firewall to capture all traffic at the time of the crash (shouldn't be too much of it at 2AM) > Maybe changing to SecurePlatform on an AMD-based Sun box might fix it. ;) I'm actually considering doing that as the current systems are getting old (and slow). Any idea what kind of hardware is required to support 6 gigabit network connections? (I'm not expecting sustained high throughput, I do expect high bursts) Thanks! Nico > > > Neil Delacruz > > > > On 1/26/06, Nico De Ranter <[EMAIL PROTECTED]> wrote: > > > > On Thu, 2006-01-26 at 02:53 -0500, fwguru wrote: > > > Solution is yet unavailable, issue is under investigation, sk11374 says. > > > > I can't find that document in SecureKnowledge 2.0, I guess I need a full > > support contract (I only habe a software subscription). I'll contact my > > vendor to get more information. > > > > > What other impact is this error is causing? > > > > Basicaly the system stays alive however almost no network traffic gets > > through. Unfortunately it always seems to happen around 2AM. When I get > > into the office the early birds are yelling because they can't read > > UserFriendly so I quickly reboot the firewall. On the system itself I > > can't find any trace of what is causing the issue. Nothing in the logs > > except for the messages below. > > > > > Seems like this is an old issue. Not sure HFA_16 caused it. > > > > It started happening after I applied HFA_16 (but only on 1 of my > > firewalls). Might be a coincidence. > > > > Thanks > > > > Nico > > > > > > > > > > > Neil Delacruz > > > > > > > > > > > > On 1/23/06, Nico De Ranter <[EMAIL PROTECTED]> wrote: > > > > > > > > Hi, > > > > > > > > I'm not sure whether this is a hardware or software issue. Shortly > > > > after applying NG R55 HFA16 my firewall started behaving arraticly: a > > > > few times a week time suddenly starts flipping on the firewall > > resulting > > > > in lots of lost packages and the following messages in syslog: > > > > > > > > Dec 31 01:00:00 fw fw: [ID 140332 kern.notice] FW-1: last packet seen > > > > -1201222288 seconds ago, assuming clock change. > > > > Jan 23 01:51:31 fw fw: [ID 140332 kern.notice] FW-1: last packet seen > > > > 1201222290 seconds ago, assuming clock change. > > > > Dec 31 01:00:00 fw fw: [ID 140332 kern.notice] FW-1: last packet seen > > > > -1201222344 seconds ago, assuming clock change. > > > > ... > > > > > > > > The firewall is a Sun Netra T1 (Sparc) running Solaris 8. There is no > > > > ntp daemon running that could mess-up time. I have since applied HFA17 > > > > but that doesn't change anything. Anybody seen this before? > > > > > > > > I wonder whether the Sun gets the time from it's hardware clock or > > > > whether it checks it once at bootup and then keeps track of it in > > > > software (like a PC?)? > > > > > > > > Nico > > > > > > > > -- > > > > --------------------------------------------------------- > > > > "It has been said that there are only two businesses that > > > > refer to customers as users: illegal drug trade and > > > > the computer industry." > > > > --------------------------------------------------------- > > > > Nico De Ranter > > > > Senior System Administrator > > > > Sony Service Center (NSCE) > > > > The Corporate Village, Da Vincilaan 7-D1 > > > > B-1935 Zaventem, Belgium > > > > Telephone: +32 (0)2 700 86 41 Fax: +32 (0)2 700 86 22 > > > > > > > > ================================================= > > > > To set vacation, Out-Of-Office, or away messages, > > > > send an email to [EMAIL PROTECTED] > > > > in the BODY of the email add: > > > > set fw-1-mailinglist nomail > > > > ================================================= > > > > To unsubscribe from this mailing list, > > > > please see the instructions at > > > > http://www.checkpoint.com/services/mailing.html > > > > ================================================= > > > > If you have any questions on how to change your > > > > subscription options, email > > > > [EMAIL PROTECTED] > > > > ================================================= > > > > > > > > > > ================================================= > > > To set vacation, Out-Of-Office, or away messages, > > > send an email to [EMAIL PROTECTED] > > > in the BODY of the email add: > > > set fw-1-mailinglist nomail > > > ================================================= > > > To unsubscribe from this mailing list, > > > please see the instructions at > > > http://www.checkpoint.com/services/mailing.html > > > ================================================= > > > If you have any questions on how to change your > > > subscription options, email > > > [EMAIL PROTECTED] > > > ================================================= > > -- > > --------------------------------------------------------- > > "It has been said that there are only two businesses that > > refer to customers as users: illegal drug trade and > > the computer industry." > > --------------------------------------------------------- > > Nico De Ranter > > Senior System Administrator > > Sony Service Center (NSCE) > > The Corporate Village, Da Vincilaan 7-D1 > > B-1935 Zaventem, Belgium > > Telephone: +32 (0)2 700 86 41 Fax: +32 (0)2 700 86 22 > > > > ================================================= > > To set vacation, Out-Of-Office, or away messages, > > send an email to [EMAIL PROTECTED] > > in the BODY of the email add: > > set fw-1-mailinglist nomail > > ================================================= > > To unsubscribe from this mailing list, > > please see the instructions at > > http://www.checkpoint.com/services/mailing.html > > ================================================= > > If you have any questions on how to change your > > subscription options, email > > [EMAIL PROTECTED] > > ================================================= > > > > ================================================= > To set vacation, Out-Of-Office, or away messages, > send an email to [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [EMAIL PROTECTED] > ================================================= -- --------------------------------------------------------- "It has been said that there are only two businesses that refer to customers as users: illegal drug trade and the computer industry." --------------------------------------------------------- Nico De Ranter Senior System Administrator Sony Service Center (NSCE) The Corporate Village, Da Vincilaan 7-D1 B-1935 Zaventem, Belgium Telephone: +32 (0)2 700 86 41 Fax: +32 (0)2 700 86 22 ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
