Re: [FW-1] Lost ssh access to SPLAT firewall!

Subject:	Re: [FW-1] Lost ssh access to SPLAT firewall!
From:	"Erik A. Widholm" <erik.widholm AT MOODY DOT EDU>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Wed, 27 Oct 2004 14:35:12 -0500

I did this, and nothing showed up in the logs.

If I issue ping -t firewall_address in the background of my client, then I can 
issue ssh and stay connected for as long as the ping is up.

This is really weird.


----- Original Message -----
From: Mike Feetham <mike.feetham AT PERCEPTA-CRM DOT COM>
Date: Wednesday, October 27, 2004 11:07 am
Subject: Re: [FW-1] Lost ssh access to SPLAT firewall!

> You might start by creating a specific rule that allows communication
> between the mgmt console and the firewall (policy pushes, etc are
> covered by
> implied rules).  Make sure the rule is set to log activity.
>
> If you still don't see the activity then I would check name
> resolution (if
> you are using name instead of IP in the SSH app), or get a tcpdump
> of mgmt
> console traffic if you are connecting by IP.
>
>
> -----Original Message-----
> From: Mailing list for discussion of Firewall-1
> [FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Erik A.
> Widholm
> Sent: Wednesday, October 27, 2004 10:19 AM
> To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
> Subject: Re: [FW-1] Lost ssh access to SPLAT firewall!
>
> Let's see...
>
> Mgmt station can both accept logs and push policies
>
> My connection attempts don't register in the logs at all.
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to LISTSERV AT amadeus.us.checkpoint DOT com
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> fw-1-owner AT ts.checkpoint DOT com
> =================================================
>

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] Lost ssh access to SPLAT firewall!, Erik A. Widholm Re: [FW-1] Lost ssh access to SPLAT firewall!, Mike Feetham Re: [FW-1] Lost ssh access to SPLAT firewall!, Ian Brown Re: [FW-1] Lost ssh access to SPLAT firewall!, Erik A. Widholm Re: [FW-1] Lost ssh access to SPLAT firewall!, Mike Feetham Re: [FW-1] Lost ssh access to SPLAT firewall!, Previtera, Sal Re: [FW-1] Lost ssh access to SPLAT firewall!, Erik A. Widholm Re: [FW-1] Lost ssh access to SPLAT firewall!, Erik A. Widholm <= Re: [FW-1] Lost ssh access to SPLAT firewall!, Erik A. Widholm Re: [FW-1] Lost ssh access to SPLAT firewall!, GoddardM Re: [FW-1] Lost ssh access to SPLAT firewall!, Previtera, Sal Re: [FW-1] Lost ssh access to SPLAT firewall!, Erik Widholm

Previous by Date:	Re: [FW-1] Clientless VPN, Ramakrishnan Pillai
Next by Date:	Re: [FW-1] Lost ssh access to SPLAT firewall!, Erik A. Widholm
Previous by Thread:	Re: [FW-1] Lost ssh access to SPLAT firewall!, Erik A. Widholm
Next by Thread:	Re: [FW-1] Lost ssh access to SPLAT firewall!, Erik A. Widholm
Indexes:	[Date] [Thread] [Top] [All Lists]