Diego F. Lastra S. <dlastra AT XERTIX DOT COM> wrote:
>
> I talked with someone at checkpoint and told me that only hosts with a
> NAT(either Hide or Static) are taken into account when licensing.
That is incorrect. The firewall counts all unique IP's located behind
it. Run "fw lichosts" to see the list.
If you install the latest Hotfix, the rules change slightly, so that
only hosts that are actually Accepted by a policy rule, will be counted.
This lets you add rules to reject traffic from failed-DHCP hosts
(169.254.*.*) in order to avoid this message.
However, it sounds like you're actually violating your license, if you
really have 600 unique hosts behind your firewall.
--
David DeSimone == Network Admin == fox AT verio DOT net
"It took me fifteen years to discover that I had no
talent for writing, but I couldn't give it up because
by that time I was too famous. -- Robert Benchley
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
