Check out these fellows:
https://support.nokia.com/knowledge/resolutionView.jsp?ResolutionId=1345 -
allows you to set the policy install timeout above 25 seconds.
https://support.nokia.com/knowledge/resolutionView.jsp?ResolutionId=1323 -
similar situation
We've got one IP120 but it's still on FP3 and it takes a long time to
install a policy. If you install a minimal policy, say about three rules,
does it still happen? How many objects are defined?
Ray Pesek, CISSP
From: Bill Mathews <billford AT BILLFORD DOT COM>
Reply-To: Mailing list for discussion of Firewall-1
<FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] NG With AI on Nokias and SPLAT as management station
Date: Wed, 4 Feb 2004 14:51:45 -0500
Yes, SIC is fine, says its communicating, I can even get a status with
status viewer. No, this doesn't work even with a cross-over to the
management station.
--
Bill Mathews
Open Source Software Advocate
billford AT billford DOT com
"Don't hate it because its Microsoft, hate it because its bad"
The wise and noble Ray Pesek spiteth forth upon the land, these thoughts:
> If it was working before the R55 upgrade, I can't help you. SIC is OK,
> isn't
> it?
>
> We did have an issue where the management station was behind the
> enforcement
> module. If the management station was connected to the Nokia box by a
> crossover cable, everything worked. When it was connected to the
network,
> same subnet as the Nokia internal interface, it would not work.
>
> To make a long story short, the problem was that the router on that
subnet
> had a route to the network of the internal interface of the Nokia but
not
> to
> the network where the external interface was. When we had the management
> station's default gateway pointed at the router, things broke because
> there
> was no route to the external interface.
>
> Ray Pesek, CISSP
>
>
>
>>From: Bill Mathews <billford AT BILLFORD DOT COM>
>>Reply-To: Mailing list for discussion of Firewall-1
>><FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>
>>To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
>>Subject: [FW-1] NG With AI on Nokias and SPLAT as management station
>>Date: Wed, 4 Feb 2004 09:07:02 -0500
>>
>>Has anyone else seen this?
>>
>>Management Station is SPLAT (NG with AI R55)
>>Modules are Nokia IP 120's (Latest IPSO, NG with AI R55)
>>
>>When pushing policy, session gets timed out, I can push to another
module
>>running SPLAT R55 just fine, just not the IP 120's. Any thoughts? I'm
>> kind
>>of stumped.
>>
>>
>>--
>>Bill Mathews
>>Open Source Software Advocate
>>billford AT billford DOT com
>>"Don't hate it because its Microsoft, hate it because its bad"
>>
>>=================================================
>>To set vacation, Out-Of-Office, or away messages,
>>send an email to LISTSERV AT amadeus.us.checkpoint DOT com
>>in the BODY of the email add:
>>set fw-1-mailinglist nomail
>>=================================================
>>To unsubscribe from this mailing list,
>>please see the instructions at
>>http://www.checkpoint.com/services/mailing.html
>>=================================================
>>If you have any questions on how to change your
>>subscription options, email
>>fw-1-owner AT ts.checkpoint DOT com
>>=================================================
>
> _________________________________________________________________
> Check out the coupons and bargains on MSN Offers!
> http://shopping.msn.com/softcontent/softcontent.aspx?scmId=1418
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to LISTSERV AT amadeus.us.checkpoint DOT com
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> fw-1-owner AT ts.checkpoint DOT com
> =================================================
>
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
_________________________________________________________________
There are now three new levels of MSN Hotmail Extra Storage! Learn more.
http://join.msn.com/?pgmarket=en-us&page=hotmail/es2&ST=1
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
