Re: [FW-1] Management Server

Subject:	Re: [FW-1] Management Server
From:	"Graham, Chad" <chad.graham AT CDI-ES DOT COM>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Tue, 27 Apr 2004 00:38:10 -0400

Thanks to everyone who responded to my post. Everyone pointed me towards
the GUI clients as the problem, and that was basically it. I decided to
go ahead and swallow my pride and post the summary.

The machine I was trying to connect from was in the list of GUI Clients,
but it also has 2 nics. So the firewall was resolving the hostname to
nic1 but trying to connect on nic2. I was so focused on the firewall
that I didn't even notice this. It finally dawned on me when nslookup
did not yield the results I was hoping for. Everything is back up now
and functional. Had I paid attention this would have been the case a lot
earlier. Thanks to everyone for their help, and watch for my soon to be
published paper "Ignoring Name Resolution - a half-fast guide to admin"

Chad Graham
Email:   chad.graham AT cdi-es DOT com

-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Graham,
Chad
Sent: Monday, April 26, 2004 9:43 AM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] Management Server

Thanks for the quick response, but that client was already added. I was
able to connect just fine until I removed the interface. I was under the
impression that I would be able to connect to any interface that was
defined on the firewall topology page. Is there a file that defines what
ip the management console is running on?

Since I forgot on my original post:
Solaris 2.8
Checkpoint SmartCenter Server NG Feature Pack 3 Build 53938

Thanks

Chad Graham
chad.graham AT cdi-es DOT com

-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Robert
Plaenk
Sent: Monday, April 26, 2004 8:37 AM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] Management Server

Telnet in and run CPCONFIG, then add a GUI client. Once that is done,
you should be able to connect via GUI (on the interface that still
works). Once you connect, then you can edit the firewall object, go to
interfaces tab and get the interfaces again.

-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Graham,
Chad
Sent: Monday, April 26, 2004 10:45 AM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] Management Server

All,



I was trying to fix a problem we were having on one of our firewalls and
caused myself

a bigger problem. On the firewall topology tab I removed all but the
hme0 interface (which

the license is bound to) and installed the policy. Well as luck would
have it, we used a

different interface to connect to the SmatCenter Server and now I cannot
get it back. I
still have telnet access to the machine so I edited the objects.C file
and added the other

nic back in, still no luck. I tried SIC reset, still nothing. Always the
same error "Connection

cannot be initiated. Make sure the server is up and running". This is
running on a Solaris

machine, and we do not have the GUI license for this machine so I cannot
run the GUI on

localhost. Is there anything I can do via the command line to allow me
to connect to

the firewall via the SmartDashboard GUI?



Thanks in advance,



Chad Graham

Email:   chad.graham AT cdi-es DOT com <mailto:chad.graham AT cdi-es DOT com>




______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________


______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________


______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [FW-1] Management Server, Robert Plaenk [FW-1] Management Server, Graham, Chad Re: [FW-1] Management Server, Lyle Dove Re: [FW-1] Management Server, secinfo Re: [FW-1] Management Server, Brad Pinkston Re: [FW-1] Management Server, Daniel Ma Re: [FW-1] Management Server, Graham, Chad Re: [FW-1] Management Server, Robert Plaenk Re: [FW-1] Management Server, Graham, Chad <=

Previous by Date:	Re: [FW-1] Edge Boxes, Hannu Liljemark
Next by Date:	[FW-1] VPN Client and Win2k, Mitesh Shetty/MUM/IN/STTL
Previous by Thread:	Re: [FW-1] Management Server, Robert Plaenk
Next by Thread:	[FW-1] SunOne LDAP, IT
Indexes:	[Date] [Thread] [Top] [All Lists]