[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW-1] I need help re: moving FW1 from one NT box to another
Hello all, I'm running 4.1 (sp5) on Winnt 4.0, with the management console on the firewall itself. Last week when attempting to use the Policy Editor I got hit with a message indicating that the key had changed on the management console. I accepted the new keys, but could not attach with policy editor. It turned out that our objects.c file was corrupt (only 255 bytes). I copied the objects.c.bak file and restarted the firewall and things worked just fine...however its happened again today. This time even the objects.c.bak file in the conf directory was corrupt, and I had to copy objects.c from the database directory. I don't have a warm and fuzzy feeling about this box, but I've never moved the firewall to a different box. My question is: What files do I need to copy over to the new box? is it just objects.c and rules.c from the database directory? Is it just a matter of installing nt 4.0 sp 6a hardening the os installing checkpoint fw1 copying the files over from the old pc installing fw1 sp5 Any help that can be provided would be GREATLY appreciated! Malcolm -----Original Message----- From: Idan Dolev [mailto:[email protected]] Sent: Tuesday, January 22, 2002 6:58 AM To: [email protected] Subject: Re: [FW-1] SecureRemote2VPN-1 did you define encryption domain ? -----Original Message----- From: "Börner, Rudolf" [mailto:[email protected]] Sent: Tue, January 22, 2002 4:18 PM To: [email protected] Subject: [FW-1] SecureRemote2VPN-1 Hi, i have configured on secure connection between SecuRemote und VPN-1. But it doesn't work :-(( Is there an ToDo-List ? Perhaps it's an simple config error ;-)) SecuRemote CP last version from Check Point Server FW-1/VPN-1 4.1 SP4 (Solaris) What i have done: Define one Rule Rule: Source: SecuRemote User (vpn.user) User Prop --> Auth: VPN-1 & .. Location: any any Encryp: IKE ; an define an passwd IKE prop: Authent. passwd Encrypt.: ESP --> DES, MD5 Destination : Object: FW/VPN itself, and object local-Net (192.191.1.0/24) Service: any Action: Client Encrypt Install on Gateway Policy Server Propert: Host FW itselfs UserGroup: SecuRemote (vpn.user) FW-Properties: VPN: IKE -- > DES MD5, SHA1 and exportable for SecuRemote Install SecuRemote on PC Install Desktop Security support. Creat a new site Enable Policy; tools encry schema IKE Connection to internet is ok. But no connection will be establish. No Information an Log Viewer :-) Can i change debug level on Log Viewer? Have anybody on idea? regards Rudi -- LOT Consulting GmbH Rudolf Boerner Am Rüppurrer Schloss 1 D-76199 Karlsruhe Fon +49 (0) 7 21 / 9 44 73-7 20 Fax +49 (0) 7 21 / 9 44 73-2 00 mailto:[email protected] http://www.mylot.de Ein Unternehmen der S o f t l a b Gruppe ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|