Re: [FW-1] Management NG AI

Subject:	Re: [FW-1] Management NG AI - Module 4.1
From:	Reinhard Stich <r.stich AT INTERNET-SECURITY DOT AT>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Thu, 31 Jul 2003 19:38:30 +0200

hi,

please check the following things:

* new mgmt is configured in fwconfig in the 4.1-configuration
* fw1 policy allowes connections from the new mgmt to the 4.1 module
* putkey is done for the correct IP-addresses (internal and external?)

cheers
reinhard

        -----Ursprüngliche Nachricht-----
        Von: Steck, Steffen M. [mailto:Steffen.Steck AT FRIATEC DOT DE]
        Gesendet: Do 31.07.2003 17:31
        An: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
        Cc:
        Betreff: [FW-1] Management NG AI - Module 4.1



        Hello,
        I have migrated my local managemet and my modules to NG AI. Mgmt is 
Solaris
        9, formerly it was on a different machine with differnt hostname and
        different IP.
        I also have a remote site FW-1 still with 4.1 Sp6 SSL Hotfix. I am 
managing
        this box still with my old mgmt (4.1 SP6) since i cannot get the new 
mgmt to
        talk to it. The new mgmt has BC installed. First I thought upgrade_im- 
and
        _export would pick the putkeys also, but this did not work. Then I did 
the
        putkeys manually from module to new mgmt and vice versa, I also tried fw
        putkey -n, both to no extend.
        The remote machine has the right ruleset to allow the new mgmt. When I 
try
        to install a new policy from Smart Center, I get an error "Connection
        refused" without any further details. In the logviewer I see the 
connections
        being accepted. fwd.elg shows nothing. Fw fetch also does not work.
        So, where is the trick to get my old 4.1 module to speak to my new 
mgmt? Any
        ideas?
        Cheers
        Steffen

        =================================================
        To set vacation, Out-Of-Office, or away messages,
        send an email to LISTSERV AT amadeus.us.checkpoint DOT com
        in the BODY of the email add:
        set fw-1-mailinglist nomail
        =================================================
        To unsubscribe from this mailing list,
        please see the instructions at
        http://www.checkpoint.com/services/mailing.html
        =================================================
        If you have any questions on how to change your
        subscription options, email
        fw-1-owner AT ts.checkpoint DOT com
        =================================================


=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] Management NG AI - Module 4.1, Steck, Steffen M. Re: [FW-1] Management NG AI - Module 4.1, Reinhard Stich <=

Previous by Date:	Re: [FW-1] NG AI and DNS drops, Edwin Davidson
Next by Date:	Re: [FW-1] NG AI and DNS drops, Crist Clark
Previous by Thread:	[FW-1] Management NG AI - Module 4.1, Steck, Steffen M.
Next by Thread:	Re: [FW-1] Armoring AIX/Win/Linux/Solaris for NG, Robson Gomes
Indexes:	[Date] [Thread] [Top] [All Lists]

Re: [FW-1] Management NG AI - Module 4.1