Chris;
Are you using UFP-Caching at all ? If so which type ? Also, what happens if you fwstop and fwstart instead of re-booting ?
We have seen this before when a policy is re-installed and there is a heavy load on the Firewall the UFP server will not re-establish TCP sessions with the UFP server. However, a fwstop / fwstart should re-stablish the communications.
-----Original Message-----
From: Chris F [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, February 13, 2001 6:28 PM
To: Firewall One List
Subject: [FW1] HTTP Security Server Woes
Hi FW1 List,
I have Solaris 2.6; FW1 v4.1 SP3
I use Websense, therefore, FW1's HTTP Security Server.
Whenever I re-install a policy, WWW browsers cannot
browse. They get that blank page/error from the
firewall that says:
FW-1 at firewall: Access Denied
The ahttpd.elg log file logs the following error:
No default track in properties
The only solution is to reboot. Sometimes, I can:
kill -1 <pid-of-http-security-server>
and everything will start working again.
This is *not* a Websense issue, but something with
FW1.
A few weeks ago, I did the last thing I could think
of: completely rebuilt my firewall (OS and FW1 fresh
installs -- then fwmerged my objects.C file)
Anyone have any suggestions for a fix? Help!
Thanks -- Chris
[EMAIL PROTECTED]
PS - I didn't try the "dangle headless chicken over
firewall" trick. Would that help?
__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail - only $35
a year! http://personal.mail.yahoo.com/
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
