Hi,
I'm not sure if that question is appropriate for this list, but.... the command
you should use to regenerate the certificates is the sbfcconfig.
But I'm sure that you have all the steps described in the manual. If you want
to, as a workaround, use the eval certificates that are somewhere under the
(...)/etc folder.
Best regards,
Pedro Boavida
-----Original Message-----
From: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST AT
AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Christoph Dollt
Sent: quarta-feira, 25 de Outubro de 2006 8:22
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] AW: [FW-1] SBFC Cluster SSL Error
You need to create new stonebeat certificates using the sb* commands.
-----Ursprüngliche Nachricht-----
Von: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST AT
AMADEUS.US.CHECKPOINT DOT COM] Im Auftrag von Edouard Manuel Zorrilla Calancha
Gesendet: Mittwoch, 25. Oktober 2006 08:55
An: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Betreff: [FW-1] SBFC Cluster SSL Error
Hello Guys,
I hope one of you can help me with this. I have a cluster SBFC 2 modules
Checkpoint NG AI R54. The issue is that I am unable to manage the nodes from
the console, I got the next error:
-------------------------------------------------------------
pefwcons:/#sbfc status
failed to verify module's certificate: certificate has expired module's
certificate has expired
ssl handshake failed (line=4747)
ssl error error:00000001:lib(0):func(0):reason(1)
pefwcons:/#sbfc status
failed to verify module's certificate: certificate has expired module's
certificate has expired
ssl handshake failed (line=4747)
ssl error error:00000001:lib(0):func(0):reason(1)
-------------------------------------------------------------
I know this is certificate error, I have been doing some research inside the
web with out luck. I wonder if some of you come up with this error in your
cluster SBFC with checkpoint so that you can help me with this. If you have a
paper how to generate the certificates again please send me the information.
Thanks a lot.
Edouard
-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail =================================================
To unsubscribe from this mailing list,
please see the instructions at http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
