Re: [FW-1] spoofing question

Yep.. I made an allowance group for eth2.. but didn't add the 172.x in the eth2 as I was under the perception that the spoofing will be checked only at the first interface the packet crosses.. -Original Message- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] O

Re: [FW-1] Mgmt Station

Hi, Thanks Lindsay . Again Tell me more about Provider-1 CMA . Can this manage multiple fw modules of different versions ?? Tks Provider-1 is effectively multiple management servers on one box. The CMA is a Customer Management Addon. Think of it as a management server in it's own right. Provider-1

Re: [FW-1] Mgmt Station

Thanks Lindsay . Again Tell me more about Provider-1 CMA . Can this manage multiple fw modules of different versions ?? Tks -Original Message- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Hill, Lindsay, VF-NZ Sent: Tuesday, April 05, 2005 10:42 PM

Re: [FW-1] spoofing question

Have you tried this suggestion and does it resolve the issue? Christopher McGill CCSA, CCNA, MCP From: Mailing list for discussion of Firewall-1 on behalf of Ramdas, Venkata (GE Healthcare, non-ge) Sent: Wed 06/04/2005 07:18 To: FW-1-MAILINGLIST@AMADEUS.US

[FW-1] slightly [OT]: using Nokia serial port to a Cisco switch

Hello, sorry for asking this here, but I think there's probably someone here knowing this: I have a Cisco switch "in the wild" e.g. internet without a mgmt IP. I have a Nokia IP 380 standing next to it, both connected with the Cisco's console cable. Now I would like to manage the switch from the

Re: [FW-1] slightly [OT]: using Nokia serial port to a Cisco switch

You can use the switch to manage the Nokia IP380 (i.e. Reverse telnet or Async, telnet x.x.x.x 2001) but I don't think nokia install minicom on the IP platforms Steffen <[EMAIL PROTECTED]> wrote: Hello, sorry for asking this here, but I think there's probably someone here knowing this: I have a C

Re: [FW-1] slightly [OT]: using Nokia serial port to a Cisco switch

Correct, but you *can* do: tip com2 :-) Tom cisco4ng wrote: You can use the switch to manage the Nokia IP380 (i.e. Reverse telnet or Async, telnet x.x.x.x 2001) but I don't think nokia install minicom on the IP platforms Steffen <[EMAIL PROTECTED]> wrote: Hello, sorry for asking this here, but I th

Re: [FW-1] slightly [OT]: using Nokia serial port to a Cisco switch

Great, Tom, that made the game, thanx a lot :-) --- Tom Rowan <[EMAIL PROTECTED]> wrote: > Correct, but you *can* do: > > tip com2 > > :-) > > Tom > > cisco4ng wrote: > > >You can use the switch to manage the Nokia IP380 (i.e. Reverse telnet or > >Async, telnet x.x.x.x 2001) but I don't think noki

[FW-1] NFS through FW-1 (Linux to Solaris problem with mountd)

Hello, I have an internal linux server (on the internal LAN) and I want to mount a file system located on a Solaris server that is in one of our DMZs. I know RPC across the firewall is generally bad, but this DMZ is a secured file server network. Anyway, the problem is that mountd seems to be ru

[FW-1] VPN woes: user getting locked out of Exchange

We have a couple of dozen VPN users coming into a NG FP3 box. Everyone seems to work pretty well for the most part, except one user keeps getting locked out of Exchange 2000. Their Active Directory account shows the account is locked. They can always initially get authenticated just fine, can ge

Re: [FW-1] NFS through FW-1 (Linux to Solaris problem with mountd)

Shane Presley wrote: Hello, I have an internal linux server (on the internal LAN) and I want to mount a file system located on a Solaris server that is in one of our DMZs. I know RPC across the firewall is generally bad, but this DMZ is a secured file server network. Anyway, the problem is that mo

Re: [FW-1] NFS through FW-1 (Linux to Solaris problem with mountd)

Shane, Is this a temporary thing? Just my opinion, but if I was you, I'd find some other way to do it. Copy the files you need with some secure transfer protocol or physically move the data from one system to the other via tape/CD. Don't use nfs through the firewall. Even rsync'ing the data betwe

[FW-1] historical report not populated on a IP350 (nokia)

s'up peeps: I just lost all historical reports on two of my Nokia´s IP350 under voyager, I checked under "Monitor Report Configuration on voyager" and also a "show monitor config on a CLIsh (command line interface) prompt" and in both, the collection interval is set to 60 (also, all the swit

[FW-1] CCSA/CCSE study material

Hi, I need to update my checkpoint certifications and wanted to know if someone is willing to sell or trade their latest checkpoint study material for CCSA and CCSE, please send me an email. Thanks Kamran = To set vacation, Out-Of-Office, or away mess

[FW-1] Partially-Automatic ClientAuth - not working!!

Hi All, I need to get partially automatic client authentication working. Without the need to manually add proxy server settings within I.E. (& without the requirement for the Session Auth agent..) I have setup the checkpoint rulebase bits as follows. [EMAIL PROTECTED] > any > any traffic > http

Re: [FW-1] VPN woes: user getting locked out of Exchange

Are they logging into a local account on their computer, or logging into their domain profile using cached credentials? We use the latter. How are they authenticating for remote access? AD via SmartDirectory or FW-1 credentials? If logging into a local account, is there any chance he/she has a mapp

Re: [FW-1] CCSA/CCSE study material

Hi, I can help you out with electronic material, I have the official Check Point course material for CCSA, CCSE, CCSE+ in NG AI, and Managing SecurePlatform. Drop me an e-mail. [EMAIL PROTECTED] +++Remove the +s as I don't want a bot spamming me.

[FW-1] Allow email is sending to some address

Hi all, Is Checkpoint possible to setup a rule to allow an email send to a few email address? E.g. Source from Any Destination to smpt.mailserver.com Email send to [EMAIL PROTECTED] or [EMAIL PROTECTED] are accepted but not others? Cheers, Clive ===