 | ||
 Edge ADSL and SmartCenter | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2006-09-28 | |||
| |||
 Edge ADSL and SmartCenter I try to connect our first Edge ADSL appliance to our Smart Center Management Server (NG R55 HFA18) but I am not successful. After I enter Gateway ID and Key, I get the error message: Connection Refused: This VPN-1 Edge is not registered to the Service Center. When I try the same configuration (Firmeware 6.5.35) with a normal Edge without ADSL modem, it works perfectly well. Do I need an update to my SmartCenter to support the Edge ADSL? What about editing the objects_5_0.c file I read somewhere? Does it help? What to add?  |
| 2006-09-29 | |||
| |||
| Re: Edge ADSL and SmartCenter Is the Edge device with ADSL listed in the dropdown box where you can choose for the type of Edge device? It should be listed as VPN Edge X ADSL series. If it is not listed: run D:\CheckPoint\FW1\R61\fw1\conf\sofaware>sms -confdir . (note the dot!) check in the output for: Problems while getting gw properties from db - Incorrect vendor for gateway NGI - DB vendor = <SBox-200> gateway vendor = <SBox-200-B>" app:SMS ] If you see this error: 1) Disconnect SmartDashboard and then run "cpstop" on the management server. 2) Take a backup of the objects_5_0.C file into a different directory. 3) Also run "upgrade_export <filename>" (from $FWDIR/bin/upgrade_tools) which will take a backup of the whole management server database, should things go badly wrong. 4) Edit the objects_5_0.C file, search for the section: :sofaware_gw_types ( : (VPN-1_Edge_W_Series We need to add a section between those 2 lines, which describes the new VPN-1 Edge hardware. The newly edited version follows (additonal text in bold): :sofaware_gw_types ( : (VPN-1_Edge_X_ADSL_Series :AdminInfo ( :chkpf_uid ("{A698EB6F-6860-49B4-9861-C76F7F1C7A1C}") :ClassName (sofaware_product_type) :table (sofaware_gw_types) :LastModified ( :Time ("Sun Aug 13 08:46:04 2006") :By (CheckPoint) :From (CheckPoint) ) :Deleteable (false) :Renameable (false) ) :default_package () :firmware_type (generic3_safe@) :hardware_type (SBox-200-B) :interface_capabilities ( : ( :AdminInfo ( :chkpf_uid ("{4E9DD71F-8EFF-4682-A69C-220DCB46691F}") :ClassName (edge_robo_interface_capabilities) ) :can_be_disabled (true) :name (DMZ) :supports_dhcp_server (true) ) : ( :AdminInfo ( :chkpf_uid ("{C9B1DDB5-9B28-471C-8523-E13B44C8A5F3}") :ClassName (edge_robo_interface_capabilities) ) :can_be_disabled (false) :name (LAN) :supports_dhcp_server (true) ) ) :show_in_menus (false) :type (sofaware_product_type_obj) ) : (VPN-1_Edge_W_Series 5) Save the file 6) Run "cpstart" 7) Log into SmartDashboard 8) Edit the object for the VPN-1 Edge device, change the type to VPN-1_Edge_X_ADSL_Series. 9) Install policy to the VPN-1 Edge device 10) Try to connect the device If any problems occur after the change, back it out as follows: 1) Disconnect SmartDashboard 2) Run "cpstop" 3) Replace the objects_5_0.C file with the old version 4) Run "cpstart" The exact cause of the problem is that the new Edge device has upgraded hardware (with ADSL support) and SmartCenter R61 does not recognise it.The fix/workaround requires edit of the file $FWDIR/conf/objects_5_0.C on the management server. Hope this will solve your problem. |
| 2006-10-02 | |||
| |||
| Re: Edge ADSL and SmartCenter I imported the lines you provided in my objects_5_0.C file on the Smart Center Management Server. I can now choose a VPN-1_Edge_X_ADSL_Series as type for the VPN-1 Edge object. But it doesnīt help. I followed your instructions carefully but even if I choose the new type, I still get the same error message. The Appliance wonīt register with the service center. Are there any other files to update, to make the Management Server compatible to the new Edge ADSL? |
| 2006-10-02 | |||
| |||
| Re: Edge ADSL and SmartCenter Quote:
|
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
