|
Fw1 authenticating against MS AD
(Preview)
Hi All
I would just like to know if anyone has successfully configured FW1-NG-FP2 to authenticate secure client users against Microsoft Active Directory. I am not looking to deploy this with full LDAP Account Unit Management but would just like to use MS AD as an externally managed user database....
|
marj
|
1
|
401
|
|
|
|
|
External and Anti-Spoofing problem
(Preview)
Hi,I need some help on a problem with Anti-spoofing feature. I have a Checkpoint VPN module, with two NIC cards. One card is connected to a DMZ and the other is connected to a internal network. Because the internal network AND Internet (External) can acces...
|
Lermure
|
0
|
337
|
|
|
|
|
Hotfix Accumulator
(Preview)
Hi Guys,
i've installed hotfix accumulator and fw ver -k gives me this output:
This is Check Point VPN-1(TM) & FireWall-1(R) NG with Application Intelligence (R55) - Build 121kernel: NG with Application Intelligence (R55) - Build 121
while the pdf says another version of buil...
|
raulico
|
4
|
807
|
|
|
|
|
NG Cluster Antispoofing
(Preview)
Hi,
I need some help with configuring anti spoofing on an internet facing interface within a checkpoint NG cluster.
When I configure anti spoofing on the internet facing interface, checkpoint comes back with an error saying that I need to configure topology information for another (non-inte...
|
smay23
|
2
|
687
|
|
|
|
|
Excluded networks (SecureClient)
(Preview)
Hi,
We are using SecureClient NG AI. I want SecureClient to start at all times except when I am connecting to a specific network. Is there a configuration I can set to exclude a network range??
Thanks
|
XJSC
|
1
|
583
|
|
|
|
|
Meta IP
(Preview)
Hi,
I am wanting to use MetaIP to assign DHCP addresses on a site we are using for a conference, the reason I want to use MetaIP is mainly for authentication.
I already have a FW-1 NGAI machine running which will be used to firewall off this new DSL link, what I would like to do is have my firewall as...
|
lickherlandcom
|
1
|
352
|
|
|
|
|
NAT Table Fills up
(Preview)
We have FW-1 NG on Nokia IPSO. The limit has been increased to 50000 but we are still running out of NAT addresses. What is causing this and will reducing the TCP timeout help if the cause is current sessions not ending correctly? Where/how do we look to see what IP addresses are bein...
|
Alex Brown
|
2
|
657
|
|
|
|
|
Firewall-1 NG FP-2 install media
(Preview)
Hello,
I've taken over a site that is running a single NG FP-2 firewall that was built in 2002. Unfortunatly the administrator that installed the Firewall misplaced all of the installation media. The firewall is running without issue, but I have no GUI workstation to control it with, and no way o...
|
richiemarshall
|
1
|
536
|
|
|
|
|
Fetching DT Security Policy from management failed
(Preview)
I have next messages in Event log when my Checkpoint Firewall NG AI (R54) started.
1. The description for Event ID ( 1 ) in Source ( FireWall-1 ) cannot be found. The local computer may not have the necessary registry information or message DLL files to display messages from a remote computer. The fol...
|
Zombie
|
1
|
710
|
|
|
|
|
Stand-alone to distributed
(Preview)
Anyone have any directions, tips, or resources on migrating a stand alone checkpoint to a distributed setup?
Thanks!
|
cosmicv
|
1
|
589
|
|
|
|
|
Reason: Connection aborted by Peer ( port = 18191
(Preview)
Hi,
I have a 2 fw-1 , 1 with the enforsment and the managment modul and 1 winth the enforsment module .
The SIC is Initialize and the Trust established but when i Install policy on the enfoesment module i have a error
"Reason: Connection aborted by Peer ( port = 18191 )( IP = x....
|
shaulbe
|
1
|
23723
|
|
|
|
|
NAT Table Fills up
(Preview)
We have FW-1 NG on Nokia IPSO. The limit has been increased to 50000 but we are still running out of NAT addresses. What is causing this and will reducing the TCP timeout help if the cause is current sessions not ending correctly? Where/how do we look to see what IP addresses are bein...
|
Alex Brown
|
0
|
481
|
|
|
|
|
FTP / SFTP of Backups
(Preview)
Using Voyager to create weekly backups and having trouble with the FTP script. It seems IPSO 3.7 does not honor a "cd" prior to a "put". "Put" tries to take the origin path and drop the file in the same destination path rather than the directory I just "cd'd" to.
e.g. /var/admin/s...
|
jbowman
|
1
|
630
|
|
|
|
|
CP VPN through a PIX FW
(Preview)
Trying to help a client get his checkpoint vpn users through a PIX firewall. No nat'ing on the pix, access-lists allow esp and isakmp passthrough. Any thing else you can think of?
Thanks
|
dprakken
|
1
|
563
|
|
|
|
|
Simplified VRRP vs. Legacy VRRP
(Preview)
Where's Nokia going with this feature, and why would they suggest we don't want to implement it?
|
jbowman
|
1
|
1553
|
|
|
