We installed NG soon after it came out. We tried to install on Win2k, and after weeks of struggle, decided to run it on NT4.0, sp6a. Unofficial word from Checkpoint techs was that Win2K had some differences in how it did tcpip that messed up NG, especially the arp issue. Once we did a fresh install on top of NT4.0, it's been fine. So I will say that NG is OK on NT40/sp6a.
I've heard that FP-1 resolved the win2k issues, but couldn't swear to it. >>> [EMAIL PROTECTED] 01/08/02 12:46AM >>> Hi ! No horror stories ... ... But some limitations: On win2k there is no way to put anything like local.arp for static NAT in the config files. You can solve it with fwparp but you have to execute this command every time you reboot. ICMP is now stateful: So you can't see echo replies in log viewer. Some other ICMP Protocols make troubles too: If you add a permanent route on the FW and you want that some clients behind learn them through ICMP redirect (ICMP Typ 5 Code 1 packets outward) then the stateful inspection denies the packet: message_info ICMP packet out of state !! So there are some NEW troubles with NG ! Arno Hechenberger -----Urspr�ngliche Nachricht----- Von: Daniel Fischer (J) [mailto:[EMAIL PROTECTED]] Gesendet: Montag, 07. J�nner 2002 22:22 An: Arno Hechenberger Betreff: FW1-NG Hi Arno, Just wondering why you don't recommend NG for deployment yet? What kind of issues have you seen? We're currently looking at this since our clients are pushing for NG but I have not yet tested it in a lab environment and I'm looking for information to feed my clients so that they'd relax and let me run through a proper test cycle for this product! They all have the Microsoft mentality where they want to upgrade to the latest release just because it's out there! Any info (or horror story) would be appreciated! Thanks DF ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
