I have FTP active
mode enabled on my firewall. Due to port failure errors I need to switch over to
FTP PASSIVE transfer mode. I need help configuring FTP Passive mode. I've looked
all over the Phoneboy.com site but came across pages concerning the difference
between Active and Passive mode but n
Try to upgrade your firewall to SP4
-Original Message-
From: Medeiros, Claudio [mailto:[EMAIL PROTECTED]]
Sent: Friday, October 26, 2001 3:51 PM
To: [EMAIL PROTECTED]
Subject: [FW-1] Solaris 8 with checkpoint one 4.1.2
Hi !
Is anyone running Solaris 8 with Checkpoint1 4.1.2 ??? Has any
I am looking at the Nokia IP330
I have ordered the T1/E1 wan card and have questions about deployment.
Is the documentation shipping with the device adequate to install and
configure this card component?
If my company wants to upgrade the T1 circuit from 1.5 M to 3.0 M will this
card handle that
hello list,
ive updated one managment fw and one fw module from SP2 to SP5. the fw-1´s
are based on
solaris 2.7 with patch cluster 106541-12.
a # ./fw ver -k says:
This is Check Point VPN-1(TM) & FireWall-1(R) Version 4.1 Build 41510 [VPN
+ DES + STRONG]
kernel: Version 4.1 [VPN + DES + STRONG] B
Hi !
Is anyone running Solaris 8 with Checkpoint1 4.1.2 ??? Has anyone
implemented this solution?
Because I had the following problems when installing the Checkpoint 4.1.2
Warning: Solaris 2.8 is not supported by check point 2000, service pack 2.
Then I tried to install checkpoint1 4.1.1 and
Dirk:
We tunnel that through SSH, so it's port 22.
See http://www.onsight.com/faq/ssh/ssh-faq-5.html#ss5.3
Joel
At 05:15 PM 10/26/2001 +0200, you wrote:
>Hello,
>
>just to be sure.
>
>Which services/ports do I have to open to enable rdist services through
>the firewall ?
>
>TIA, Dirk.
>
>=
Hi,
Use 'ssh'. See: http://www.magnicomp.com/rdist/rdist.shtml
Chris
- Original Message -
From: "Dirk Boenning" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, October 26, 2001 11:15 AM
Subject: [FW-1] Rdist Services ?
> Hello,
>
> just to be sure.
>
> Which services/ports do
Title: NAT and Lost Connections
Hello,
I am running Checkpoint 4.1 sp4 on Windows NT 4.0 sp6. I have a webserver in a DMZ that has its address translated at the firewall. The NAT is static, there is a route on the firewall and an entry in the local.arp file for the webserver such that the fi
Any issues with the
time change going back 1 hour this weekend? (I am aware it doesn't affect
all of us.)
This will be my
first time doing this w/FW1.
Anything I should be
aware of in the log files?
What about my
Checkpoint DNS servers? Anything funny happen with them when the timec
Thanks, s much. Dee Veasey
===
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===
1) Haven't bothered ;)
2) Try adding 'clear_fwz_coonnections_on_kill (true)' to userc.C
3) Create different groups and create rules for each group
Morocco@Any, Spain@Any, etc. The group goes in the source field.
-Original Message-
From: Mailing list for discussion of Fir
As for security involving protecting the VPN appliance.
Is safe to assume the Firewall capabilities of the Cisco Router add-on
Firewall package (CBAC) is equivalent to
Check Point FW-1? We are now comparing Firewall to Firewall.
If they are comparable.
Then I should be able to replace my Check Po
Hello,
just to be sure.
Which services/ports do I have to open to enable rdist services through
the firewall ?
TIA, Dirk.
===
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
==
Off course... it is the management module that is backward compatible.
Not the management clients. :-)
Thanx!
===
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=
Yes we have had the same thing happen. See the release notes for SP5 under:
URI File Name Bypass.
Checkpoint lists a change you are supposed to be able to make to turn this
off (regardless of whether or not this is a good idea from a security
standpoint). We have tried the recommended fix and it
>>>given the large number of exploits that are designed to root exchange
servers...
Huh? And what would those be?
-Original Message-
From: Bob Webber/Markham/Contr/AT&T/IJV [mailto:[EMAIL PROTECTED]]
Sent: Friday, October 26, 2001 9:11 AM
To: [EMAIL PROTECTED]
Subject: Re: [FW-1] Check
Title: Message
Chris,
When
my W2k stops, it looses all connectivity. Only a reboot fixes
my problem. I already have the upgrade to NG in the office,
will try this as soon as a get a chance.
In
your case, don't upgrade your 4.0 fw to win2k. Instead get the
NG upgrade and migrate to win2k
Hi,
If you have more than one network in the encryption domain, you have to
create one IPSec routing policy for each network in the encryption
domain, and a unique tunnel for the separate policies.
Rgds,
Björn J
> -Original Message-
> From: Greg Michael [mailto:[EMAIL PROTECTED]]
> Sen
On Fri, Oct 26, 2001 at 03:02:41PM +0200, Jan Egeriis wrote:
> Is it possible to have the CheckPoint Log Viewer NG/Policy Editor NG/System
> Status NG controlling different firewalls running FW-1 4.1 and other
> firewalls running FW-1 NG ??
> How?
Yes, if the management module is NG. The Log Vie
My $.02:
It would be appropriate to do that if and ONLY if the mail server were on a
DMZ. I don't think it would be a good idea to forward connections from the
internet to a system which is at the very heart of the internal network. I
would expect that practically every host on the internal netw
We run lot's of Notes traffic , both Notes ports, and HTTP ports with no
problems via NAT4.1 SP3,4,5.
Chad Smith
Wade Sellers
<[EMAIL PROTECTED]> To:
[EMAIL PROTECTED]
Sent by: Mailing list for discussion c
Is it possible to have the CheckPoint Log Viewer NG/Policy Editor NG/System
Status NG controlling different firewalls running FW-1 4.1 and other
firewalls running FW-1 NG ??
How?
Best regards
Jan
===
To unsubscribe from this mailing list,
please see th
I am sorry to ask such a novice "like question", but it would be of much
help if someone can answer me.
I am using Nokia 330 Firewall with ipso. In order to FTP out the logs files
weekly I made a small script that does the fw logswitch and the upload of
the log files into a ftp server.
The proble
I am trying to set up a VPN between a CP 4.1 SP 4 NT 4 SP 6a to a
Watchgaurd Firebox running 4.6 .
I am using IKE and I get phase 1 and phase 2 to complete successfully, but
when I do a tracert to an IP address at the remote end at the Firebox I get
a message encryption failure: Peer used wrong me
I will be upgrading from Firewall1 4.0 SP8 to 2000 (4.1 ), I am wondering if
anyone had any difficulties performing the upgrade from 4.0 to 2000, and any
how to perform upgrade (newbie to firewall upgrade, first time?)? I have
read tid bits here and there and am looking for any tips/suggestions. A
Hi
Further to this "problem". I have since re-read the SP5 Release Notes. The
topic is covered here.
Cheers
mark
-Original Message-
From: Mailing list for discussion of Firewall-1
[mailto:[EMAIL PROTECTED]]On Behalf Of Mark
van Gelder
Sent: Friday, October 26, 2001 2:01 PM
To: [EMAIL P
Good Day
Has anyone else seen these errors when using the HTTP Security Server is
FW-1 Ver 4.1 SP5?
We have users getting this error logged while trying to access Clip Art from
the Microsoft Web site and mail from Yahoo etc. When users try to access a
URL of this type, they get no response.
Is
Yes,
You also have to install it on the management station.
chat wrote:
> Dear allI would like to install floodgate and FWM on NG
> enforcement module with distributed installation.After I installed
> Enterprise Management server, only Primary management not include
> floodgate,i tri
Be advised to use the cable and connectors shipped with Nokia. Using a Cisco
cable will not work.
Nils
-Original Message-
From: Juan Concepcion [mailto:[EMAIL PROTECTED]]
Sent: Friday, October 26, 2001 3:17 AM
To: [EMAIL PROTECTED]
Subject: Re: [FW-1] nokia serial port configuration
ba
Hi all.
I'm using 2 Nokia 530 boxes with FW1 4.1 SP4 with fail-over functionality.
Unfortunately the sessions to a Citrix server (service winframe) and to an
AS400 with IBM Client Access (telnet) crash when I install a new policy, in
case of fail-over or even sometimes apparently without any reas
Dear
all
I would like to
install floodgate and FWM on NG enforcement module with distributed
installation.
After I installed Enterprise Management server, only Primary management not
include floodgate,
i tried to connect to enforement
module, but I couldn't define the fwm to be floo
baud rate: 9600
data bits: 8
Parity: None
Stop bits: 1
Flow Control: None
Michael Louie wrote:
> 8-N-1, 9600
>
> On Thu, 25 Oct 2001, K wrote:
>
> > Hi all,
> >
> > Can't find manual for Nokia 440, what terminal settings do I use with
> > appliance?
> >
> > ==
Title: UNSUBSCRIBE fw-1-mailinglist
Bruce Trevarthen
Managing Director
E-Solutions New Zealand Limited
Level 4, United Building, 107 Custom House Quay
P.O Box 9918, Marion Square
Wellington, New Zealand
Mobile: 021 681 695
Office: 04
I really appreciate and thank you for your suggestions.
Sad but true that some problem occurs make me far away from training course.
However I'm glad that I'm using the same resource as you suggest me.
Regards
Pat.
-Original Message-
From: Roelandts, Guy [mailto:[EMAIL PROTECTED]]
Sent:
Why not just let the FW-1 machine forward the port 25 traffic to the
mail server and let it (the mailserver)do the mail scanning. I run an
Exchange 2000 Server behind a FW-1 4.1sp4 machine and have NAV for
Exchange 2.5 running and it catches everything that has hit it so far.
I'm very proactive w
36 matches
Mail list logo
