Jeremy Lieb wrote:
Good afternoon. I'm trying to come up with some compelling reasons to
switch from pure Enterprise Linux for our firewalls and Smart Center to
SPLAT. I've been playing around with SPLAT for months and much prefer it
to the standard RHEL Checkpoint installation but I'm running in
On Tue, 4 Sep 2007, cisco4ng wrote:
I made a few changes to the rule. I use http instead of scp and I assign a
weigh of 90 to http and 15 to ftp.
I have two http sessions and two ftp sessions running at the same time
downloading a 100MB file size. I started two http sessions first. I star
The drivers issue is a complete pain, I agree with that, but SPLAT is a
platform especially modified by Check Point to their firewall or
SmartCenter, that guarantees a high level of security and stability.
I work for a CCSP and our CP presales guys always ask for us to suggest our
customers to go
I made a few changes to the rule. I use http instead of scp and I assign a
weigh of 90 to http and 15 to ftp.
I have two http sessions and two ftp sessions running at the same time
downloading a 100MB file size. I started two http sessions first. I started
two FTP sessions immediate
Sneaker-net. :-)
Once it's expired, it's expired. You will need to issue a new certificate
and get it to them somehow or use the "pull" method where they enter the
code they receive by email to get a new certificate.
If you're running current versions of FW-1 and SecuRemote/SecureClient, the
Great! Thanks for the follow-up note,
Ray
From: Richard Newton <[EMAIL PROTECTED]>
Reply-To: Mailing list for discussion of Firewall-1
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOINT.COM
Subject: Re: [FW-1] Problem renewing SecuRemote certificate
Date: Mon, 3 Sep 2007 22:27:58 -0400
Good afternoon. I'm trying to come up with some compelling reasons to
switch from pure Enterprise Linux for our firewalls and Smart Center to
SPLAT. I've been playing around with SPLAT for months and much prefer it
to the standard RHEL Checkpoint installation but I'm running into static
from my sup
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Wayne Keatts <[EMAIL PROTECTED]> wrote:
>
> I need to allow connections from our lan to SecureClient. I have
> created an IP NAT Pool, and applied it to SecureClient connections. A
> sniffer on the local lan shows traffic from the SecureClient is ind
On Tue, 4 Sep 2007, Sergio Alvarez wrote:
I believe instead of IP Pool NAT, what you need is Office Mode.
You can find details about it in the VPN pdf document you will find in your
installation disks and is also available at the Check Point website.
There is a limitation. back connections to
I believe instead of IP Pool NAT, what you need is Office Mode.
You can find details about it in the VPN pdf document you will find in your
installation disks and is also available at the Check Point website.
Regards
On 9/4/07, Wayne Keatts <[EMAIL PROTECTED]> wrote:
>
> I need to allow connecti
I need to allow connections from our lan to SecureClient. I have created an
IP NAT Pool, and applied it to SecureClient connections. A sniffer on the
local lan shows traffic from the SecureClient is indeed being NAT'ed behind
this pool. However, if we try to connect to the SecureClient from the
Thanks everyone for your input. I am going to try with http
and ftp (instead of ftp and scp, even though all of my clients and servers
are Linux/solaris with 2GB of RAM and dual 3.2 Ghz CPU boxes).
Yes, I realize that this is a small scale; however, I would think
that in a small test scale envir
I think part of your results are just due to your test lab setup. First I'd
say try to force the NIC and switch settings down to 10Mb full duplex for that
small of a throughput test, so you're total traffic exceeds the available
bandwidth, and see if QOS doesn't do more of what you expect it to
I agree fully with Hugh on the weight distribution based on the rule
(meaning distributed by protocol) however my concern was why 50Mbs when the
link was 100Mbs?
Roger Herr
WhyNot? Consulting Services
24165 IH 10 West Suite 217-183
San Antonio, Texas 78257
210-860-3990
Some men see things as t
On Tue, 4 Sep 2007, cisco4ng wrote:
I have a question for checkpoint flood-gate gurus in the forum.
I have NG AI R55 with HFA_20 running on SPLAT enforcement
module. This module is being managed from a Provider-1 NG
AI R55 with HFA_20. I have single firewall at the moment
but I configure Clu
Hi,
Yes, I checeked QoS at the network topology. I have everything set to 100Mbps
because everything is connected to a Cisco 2950 Catalyst switch. I have this
setup in my lab environment.
I still have issues. Please help. Thanks.
Pedro Boavida <[EMAIL PROTECTED]> wrote:
Hi,
Hi,
Did you checked wich interface has QoS at the network topology ?
Best regards,
-Original Message-
From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On
Behalf Of cisco4ng
Sent: terça-feira, 4 de Setembro de 2007 15:59
To: FW-1-MAILINGLIST@AMADEUS.US.CHECKPOIN
I have a question for checkpoint flood-gate gurus in the forum.
I have NG AI R55 with HFA_20 running on SPLAT enforcement
module. This module is being managed from a Provider-1 NG
AI R55 with HFA_20. I have single firewall at the moment
but I configure ClusterXL on this firewall because I
According with the Hardware Compatibility List in the Check Point website:
http://www.checkpoint.com/services/techsupport/hcl/all.html
Your 1950 with PERC controller is supported starting from R60, if you are
trying to install R60 o R61, you will need a particular ISO and will need
help from the
On Tuesday 04 September 2007 15:57, pkc_mls wrote:
> Gil Hananya a écrit :
> > Hi,
> >
> >
> >
> > I'm trying to install splat on new Dell PowerEdge 1950 with PERC 5 raid
> > controller, but can't get it install.
> >
> > I think I need driver for the PERC.
> >
> > Please advise/help
>
> hello,
> if
Gil Hananya a écrit :
Hi,
I'm trying to install splat on new Dell PowerEdge 1950 with PERC 5 raid
controller, but can't get it install.
I think I need driver for the PERC.
Please advise/help
hello,
if the server is on the HCL from checkpoint website, they should
indicate which releas
This raises a question for me.
How are end user certificates handled when they expire if they can't be
renewed? I just started using certificates and I need to plan for issues
with expiration.
John
Richard
Hi,
I'm trying to install splat on new Dell PowerEdge 1950 with PERC 5 raid
controller, but can't get it install.
I think I need driver for the PERC.
Please advise/help
Gil
=
To set vacation, Out-Of-Office, or away messages,
send an ema
23 matches
Mail list logo
