On 10/25/06, Matheus Valença <Matheus.Valenca AT t-systems.com DOT br> wrote:
Dear CheckPoint Gurus...
I have a NOKIA IP530 with IPSO 4.1 and CheckPoint R61 installed. This firewall
have 19 internal interfaces and 1 external interface with a /28 range of IPs.
The network of the users and some servers (/22), make NAT to internet in one
IP. Last night, this nat crashed and all the internet access from this network
stopped.
All others nat (1 to 1 for the web servers) did not stopped.
I received this message in the LOG;
DROP - "message_info: NAT Hide failure - there any currently no available ports for
hide operation"
I have no ideas of what could be happening, because the only solution that I
have in that hour (4:00am) was a reboot. Rsrsrs
How many user do you have on the /22 network ?
This seems like a resource problem, for the NAT code , no longer
being able to map client IP's to the Natted address.
M.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
