cisco4ng wrote:
Thank you. However, this requires that I have to select "YES" when I run
sysconfig and have install checkpoint synchronization, correct?
wrong.
My question is that during the initial "sysconfig", I select "NO" when asked
about installing Checkpoint synchronization. Later on
Frank Sackewitz wrote:
Hi,
which Softphone you are using? I only got it running with Phoner
(http://www.phoner.de/index_en.htm).
i'm using a cheap hard phone made in china :)
The reason is that Checkpoint is doing NAT, even if you have told that you
did´nt want it. This feature is called "
On Tue, 28 Aug 2007, cisco4ng wrote:
I know for a fact that the P-1 MDG R65 has an issue with applying
CMA license via the MDG. Checkpoint is aware of this because
I opened a TAC case on this and they gave me a new MDG to fix
this.
As far as the bge0:1 is concerns, I did try this with NGx
On Tue, 28 Aug 2007, no-need to-list wrote:
VPN domain cannot overlap, unless you are using all these firewalls in a
cluster mode such as clusterXL.
whatver network segements you have in encrydoamin1 should not exist in
encryption2, tis is the cleanest way to do it.
If you really need to ov
Hi Guys,
Thank you very much for your help. I will test it tonight at home
just to confirm it.
david
Matthew Odendaal <[EMAIL PROTECTED]> wrote: The Check Point synchronisation
features can be disabled / enabled
without rebuilding. All you have to do is choose the "Enable cluster
membership f
>>> On 8/27/2007 at 10:37 PM, Hugo van der Kooij
<[EMAIL PROTECTED]> wrote:
> On Mon, 27 Aug 2007, Crist Clark wrote:
>
>> I'm trying to set up a new SmartCenter on Solaris 10, but
>> something weird is going on with the licensing. Whenever I
>> try to connect from SmartDashboard, I get told the l
The Check Point synchronisation features can be disabled / enabled
without rebuilding. All you have to do is choose the "Enable cluster
membership for the gateway" as previously stated. If you don't have the
option available, it's most likely because the module also has a
SmartCenter on it. If the
Thank you. However, this requires that I have to select "YES" when I run
sysconfig and have install checkpoint synchronization, correct?
My question is that during the initial "sysconfig", I select "NO" when asked
about installing Checkpoint synchronization. Later on, I need checkpoint
synchroni
Yes. You should see this option from cpconfig, #7.
-GS
fwgs[admin]# cpconfig
This program will let you re-configure
your Check Point products configuration.
Configuration Options:
--
(1) Licenses
(2) SNMP Extension
(3) Group Permissions
(4) PKCS#11 Token
(5) Random Pool
Cpconfig
Sent via BlackBerry by AT&T
-Original Message-
From: cisco4ng <[EMAIL PROTECTED]>
Date: Tue, 28 Aug 2007 07:54:36
To:FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: [FW-1] SPLAT and activating Checkpoint Synchronization.
Scenario: I have a Provider-1 NG AI R55 wit
Hi
You can enable cluster membership by running cpconfig and selecting the
option "Enable cluster membership for this gateway". This will require a
reboot to enable.
This will enable the clusterxl / sync subsystem.
Matthew Odendaal
Information Security Architects (Pty) Ltd
[EMAIL PROTECTED]
Scenario: I have a Provider-1 NG AI R55 with HFA_20
and a SPLAT enforcement module. Everything is running
on eval license.
Initially when I run "sysconfig" on the SPLAT during
initial build of the SPLAT, it prompted me if I want
to install Checkpoint Synchronization, I select "NO"
because I
'elapsed' field refers to 'duration of the connection'
start_time refers to the date and time the conn started. ***Use the elapsed
field to calculate the time the connection ended***
this is from some CP doc that I had pulled off for my records and
understanding.
hth,
Rajeev
On 8/27/07, Larry
I also had a problem on the new firefly devices with R65 the load
sharing lic. Wouldn't work. Checkpoint had to derive new ones
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED] On Behalf Of
cisco4ng
Sent: 28 August 2007 12:21
To: FW-1-MAILINGLIS
I know for a fact that the P-1 MDG R65 has an issue with applying
CMA license via the MDG. Checkpoint is aware of this because
I opened a TAC case on this and they gave me a new MDG to fix
this.
As far as the bge0:1 is concerns, I did try this with NGx R61
and it worked for me. C
VPN domain cannot overlap, unless you are using all these firewalls in a
cluster mode such as clusterXL.
whatver network segements you have in encrydoamin1 should not exist in
encryption2, tis is the cleanest way to do it.
If you really need to overlap networks segment then you need to do some
Hi,
which Softphone you are using? I only got it running with Phoner
(http://www.phoner.de/index_en.htm).
The reason is that Checkpoint is doing NAT, even if you have told that you
did´nt want it. This feature is called "SIP Early NAT".
This works fine until a Softphone is using rport.
Try t
Hi,
I have a strange problem with SIP going through a VPN connection.
I have two sites, connected via a site 2 site full mesh vpn connection.
NAT is disabled inside the VPN community.
everything works ok except sip, which is being dropped by the firewall
with the message: "connection contain
18 matches
Mail list logo
