Markus Schmidt a écrit :
Hi
there is no incomming ssh connection, as long as I leave the polic
installed. If I disable the policy, everything runs fine.
even if there is no connection, you should see at least a syn request,
unless someone else
on the LAN has the same MAC address.
But the strange thing: the policy allows ssh, and, as said, the
connection appears also as accepted in the Tracker.
The ssh is also only a example, the same behaviour I experience with ICMP:
ping from SmartCenter to ClusterNode:
*works when:
- policy disabled OR
- HFA_02 uninstalled OR
- the source is the active Cluster node
*works NOT
- HFA_02 installed AND
- Source is anything except the second Cluster Node
can you check with an arp -a on the ssh client if the MAC address is
correct, and if the ssh packets are correctly sent ?
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
