On Mon, 18 Jun 2007, cisco4ng wrote:
Yes, I can push policy to both Nokia cluster members.
But can you fetch as well? That would be more like the sort of connection
as used for the logging.
Yes, if I increase the nokia priority on the other one from 95 to 105 and make
it active node,
I do not see this problem.
So there is some new info. You do not have this on a cluster but just on 1
of the VRRP nodes. So what is different between the 2 of them? master
file, client file, routing, that sort of details. You need to use a fine
comb and go over the details. If in doubt use diff to see if config files
are really different as well. You may miss something trivial when doing it
manually.
I would have to do a fwm logexport on both the CMA and the nokia itself to
compare the log.
My guess is that some of the logs are not being sent to CMA. Otherwise, the
log file
on the Nokia "fw.log" wouldn't be 500MB everyday.
Well. Guessing is one thing but it will not solve anything. You must do
the checks manually to be sure. Otherwise you will be left where you are
now.
Hugo.
--
[EMAIL PROTECTED] http://hugo.vanderkooij.org/
This message is using 100% recycled electrons.
Some men see computers as they are and say "Windows"
I use computers with Linux and say "Why Windows?"
(Thanks JFK, for the insight.)
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
