Firewall-1
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [FW-1] Active Directory replication between VPN site-site-tunnels

from Kalpesh Patel [Permanent Link]
Subject: Re: [FW-1] Active Directory replication between VPN site-site-tunnels
From: Kalpesh Patel <KPatel AT KINGSTON-TECHNOLOGY DOT COM>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date: Tue, 25 Oct 2005 13:47:38 +0100 
That's right.... someone upgrade a windows 2003 domain controller to SP1 
in a different location  We started seeing replication issues between 
D.C's and all location had to upgrade to SP1. 

Then this problem started up.

Thanks
Kalpesh




Mikael Trosell <Mikael.Trosell AT CONSULTANT.SAAB DOT SE> 
Sent by: Mailing list for discussion of Firewall-1 
<FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>
25/10/2005 12:17
Please respond to
Mailing list for discussion of Firewall-1 
<FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>


To
FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
cc

Subject
Re: [FW-1] Active Directory replication between VPN site-site-tunnels






Hi.

It seems to be some trouble with Windows 2003 SP1.
I have the same problem and can see the traffic dropping on rule 995
(Smart Defence).

The problem exists in NG AI R55 and the solution i found is to upgrade
to R55 HFA_16
(I have not performed any upgrade yet).

http://www.fw-1.de/aerasec/ng/smartdefense-02.html

Regards

Micke T





-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Kalpesh
Patel
Sent: den 25 oktober 2005 12:39
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] Active Directory replication between VPN
site-site-tunnels


Hi

We have a Site-to-Site VPN tunnel between UK, Paris and Munich with
"any" 
service going through the rule (for now).

We have now moved over to Microsoft Active directory (Windows 2003 SP1) 
and for some reason I'm seeing "domain-udp" drops in the firewall logs 
between the domain controllers and the DC are not replicating through
the 
firewalls.

Does anyone have a solution to this?

Regards
Kalpesh



This message has been scanned for viruses by BlackSpider MailControl -
www.blackspider.com

Website: http://www.kingston.com/europe

Registered in England, No: 3643195     VAT No: GB 720 5258 60"

"This email and any attachments is intended for the addressee only.
It may contain confidential, proprietary or legally privileged
information and any views or opinions presented are solely those of the
author.
If you are not the address you have received this e-mail in error.
Please notify the sender by return e-mail and then destroy it.
If you have received this e-mail in error, copying, printing,
forwarding or dissemination of this e-mail is strictly prohibited.
We virus scan all e-mails but are not responsible for any damage
caused by a virus or alteration by a third party after it is sent.




=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================


<FONT style="BACKGROUND-COLOR: #ffffff"> <P align=center><FONT 
style="BACKGROUND-COLOR: #ffffff">Click 
https://www.mailcontrol.com/sr/wQw0zmjPoHdJTZGyOCrrhg== 
 to report this email as spam.</FONT></P></FONT> 


=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [FW-1] NGX R60A release notes, Jason Tan
Next by Date:  Re: [FW-1] Active Directory replication between VPN site-site-tunnels, Kalpesh Patel
Previous by Thread:  Re: [FW-1] Active Directory replication between VPN site-site-tunnels, Mikael Trosell
Next by Thread:  Re: [FW-1] Active Directory replication between VPN site-site-tunnels, Quick, Richard A.
Indexes:  [Date] [Thread] [Top] [All Lists]