Firewall-1
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [FW-1] NOKIA Ip clustering (AI R55) with RSA SecureID ACE Ser ver

from Zheng Xu [Permanent Link]
Subject: Re: [FW-1] NOKIA Ip clustering (AI R55) with RSA SecureID ACE Ser ver
From: Zheng Xu <Zxu AT LIQUIDNET DOT COM>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date: Thu, 29 Apr 2004 17:00:32 -0400 
Kingsley,

1. Assume that your RSA server is located in the internal network (behind
the FW):

1) add the FW as a agent host by using FW's external IP (cluster IP)
2) the agent host must be resolvable through DNS or add it to the host file
on the RSA server

2. On CP FW Mgmt server:

2) vi $FWDIR/lib/implied_rules.def

3) remove the line with "#define ENABLE_RADIUS_SERVER"

4) restart CP

3. On CP Enforce module:

1) create a RSA server object
2) create a RADIUS object (UDP RADIUS; ver2.0 compatible) under Servers and
OPSEC Application


Good luck,
Zheng

-----Original Message-----
From: Kingsley Chu [mailto:kingsleyc AT DATALINK.COM DOT HK]
Sent: Thursday, April 29, 2004 3:09 AM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] NOKIA Ip clustering (AI R55) with RSA SecureID ACE
Server


Hi,
        We have a RSA SecureID annd Checkpoint NGAI R55 on Nokia box (ip
clustering). Anyone know how setup the ACE with NOKIA IP clustering ?

kingsley

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
This email and any files transmitted with it are confidential and intended 
solely for the use of the individual or entity to whom they are addressed. If 
you have received this email in error please notify the system manager. This 
message contains confidential information and is intended only for the 
individual named. If you are not the named addressee you should not 
disseminate, distribute or copy this e-mail.

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • Re: [FW-1] NOKIA Ip clustering (AI R55) with RSA SecureID ACE Ser ver, Zheng Xu <=
Previous by Date:  Re: [FW-1] SV: [FW-1] VRRP setup question, Sascha Picchiantano
Next by Date:  Re: [FW-1] Solaris Management CA FQDN, Campbell Colin (Landcentre)
Previous by Thread:  [FW-1] Solaris Management CA FQDN, Luque Quiroga Federico
Next by Thread:  [FW-1] VPN-1 Edge to NG AI using traditional mode VPN, Harald Astrand
Indexes:  [Date] [Thread] [Top] [All Lists]