Thread: Failed to run fw comp:no error
View Single Post
  #1 (permalink)  
Old 2006-07-31
rstephens rstephens is offline
Junior Member
  
Join Date: 2006-07-31
Posts: 1
Rep Power: 0
rstephens has an average reputation (10+)
Default Failed to run fw comp:no error
Has anyone seen this error on a SmartCenter server that was not running Windows 2003?

Solution sk31368 incorrectly states that implementing HFA-15 or higher resolves this issue.

In my scenario, I created a host object and added it to a group used to block certain hosts from connecting inbound or allowing any outbound connections to these hosts. The SmartCenter manages 3 different firewalls, 2 are single gateways and the other is a VRRP cluster. All the firewalls are Nokia's. These two rules are number 1 and 2 in each rule set:

grp-blocked ANY ANY Drop
ANY grp-blocked ANY Drop

Installation to the single gateways works without issue but it fails with a
"Failed to run fw comp:no error" message when trying to install ot the cluster.

If I insert a new rule number 3 that reads:
host-25 ANY ANY Drop
(host-25 was the new host that was created and added to the group) and then disable this new rule 3. The policy will install without issue to the cluster.

Anyone have any ideas on this?
Reply With Quote