Mario,
If have done this yesterday to test, between two Windows Nt Management
Servers. But Windows 2000 should be fine too.
Here are the steps I did to make everything work, note that we have no
Solaris box (not yet installed) but the Firewall modules are WinNt, W2K and
a Linux box.
1. Installation :
Install the Management Server with the exact same versions of CP software.
2. On the Management Server :
� Copy the $FWDIR/conf/objects.C file
� Copy the $FWDIR/conf/*.W files
� Copy the $FWDIR/conf/*.pf files
� Copy the $FWDIR/conf/rulebase.fws file
� Copy the $FWDIR/conf/fwauth.NDB* files
� Copy the $FWDIR/conf/fwmusers file
� Copy the $FWDIR/conf/gui-client file
� Copy the $FWDIR/conf/fwauth.keys file
� Copy the $FWDIR/conf/serverkeys.* files
3. To move the Firewall Modules from old to new Management Server :
� Tell the new Management Server what are it's Firewall Modules, add
one by one
� Tell the Firewall module that it's Management Server has changed, on
Nt & W2k
go to the CheckPoint Configuration -> Masters tab, on Linux run
$FWDIR/bin/cpconfig -> option (2) Masters
� When exiting the CheckPoint Configuration screen you are asked to
restart, proceed.
� When restarted, most of the time, logging and policy downloads will
still fail, go to the $FWDIR/state directory and remove all local.* files
(except the local.arp),
then simply fwstop and fwstart the Firewall Module again
Hope this helps.
Met vriendelijke groeten - Bien � vous - Kind regards
Guy ROELANDTS
EMEA GS Internet Expertise Centre
Compaq Software Engineer - Belgium
E-mail : [EMAIL PROTECTED]
Tel: +32(02)729.77.44 (options 3 - 3 - 1)
Fax: +32(02)729.77.65
-----Original Message-----
From: Dias, Mario (Bolton) [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, July 03, 2001 6:50 PM
To: '[EMAIL PROTECTED]'
Subject: [FW1] CheckPoint FW-1- Moving a Management Server
Our infrastructure:
Two Checkpoint FW-1 version 4.1 installed on a Sun Solaris and on a
Compaq NT 4.0. The management server currently sits on the Sun box. We would
like to move the management server to another NT box.
- Can the Management server run on Windows 2000?
- What are the procedures (documentation) for moving a management
server?
Thank you in advance,
Mario Dias
HUSKY Corporate I.T.
530 Queen Street, South
Bolton, Ontario, Canada
L7E-5S5
P - 905.951.5000 (2376)
F - 905.951.5142
Web: www.husky.ca
Email: mailto:[EMAIL PROTECTED]
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
