My question is:
1. If backup firewall machine down, can primary firewall continue work
(now no log server).
Yes, the primary can continue. Check Point will log locally if it can't find any
other place to log to. They designed it to deal with the absense of a
management server.
2. At this time, if I reboot primary machine, can it get security policy?
Yes. The management server compiles the INSPECT code from the information
provided by the GUI into machine code that is loaded into the INSPECT engine on
the firewalls themselves. Which means each firewall node will have a copy of the
policy it can use if it doesn't hear otherwise from the management station.
----------------------------------------------------------------
Mark Boltz Stonesoft, Inc.
Network Security Specialist 115 Perimeter Center Place
[EMAIL PROTECTED] South Terraces, Suite 1000
Tel: +1 770 668 1125 Atlanta, GA 30346
Cel: +1 404 386 8500 USA
Fax: +1 770 668 1131 http://www.stonesoft.com
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
