CPUG

The Check Point User Group

A Resource For The Check Point Community.  Fast.  Useful.  Independent.

1. CCSA/CCSE One-Week Dual-Certification Training Course with CPUG in San Francisco!
    Courses Starting 11/3, 12/8, (2009) 1/19, 2/9, 3/9, 4/6, 5/4, 6/8, 7/6, 8/3, 9/7.
2. Join Us On LinkedIn - We now have a CPUG group.


Go Back   CPUG: The Check Point User Group > Check Point Firewall-1/VPN-1 And Related Products > SmartDashboard
Reload this Page Error installing Policy
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 2006-12-21
jules jules is offline
Junior Member
  
Join Date: 2006-12-21
Posts: 2
Rep Power: 0
jules has an average reputation (10+)
Default Error installing Policy
Does anyone have any suggestions? I'm stuck and my Checkpoint support subscription expired :(

Firewall version and build: NG with Application Intelligence (R55) 093

This is what happened: I went to the address translation tab in Smart Dashboard, we had one NAT rule there. I added 2 rules below it in an attempt to allow port forwarding. I also deleted a rule from the Security tab that had been disabled and we weren't going to use anymore. I did a Policy, Verify and that was okay. I next did a Policy, Install and the install failed with this error: Reason: Load on Module failed - no memory.

So, I went back to the address translation tab and deleted the 2 rules that I had just created and on the security tab I recreated the disabled rule I had deleted. (So, everything should be back to the way it was before the first verify). I did another Policy, Verify and that came back okay. Did a Policy, Install and got the same error message again.

I can open SmartDashboard and go to File, Installed Policies and view the policy on the firewall, and by the way, the firewall is working just fine - no complaints from users so far. So, if I could just somehow overwrite the policy that SmartDashboard makes changes to with the installed policy then this may fix the problem.

Any ideas?

I went to the firewall command line and looked at the dates of these files:

$FWDIR/conf:

objects.C - dated today
objects_5_0.C - dated today
rulebases_5_0.fws - dated today

$FWDIR/conf/firewall:

objects_5_0.C - dated today
rulebases_5_0.fws - dated 2 days ago at last successful policy installation


What I think I need to do is to replace the $FWDIR/conf/rulebases_5_0.fws with the $FWDIR/conf/firewall/rulebases_5_0.fws.

Does that sound right? and if so, how?


Thanks for any help, I'd really appreciate it!!
Reply With Quote
  #2 (permalink)  
Old 2006-12-21
Joncon Joncon is offline
Senior Member
  
Join Date: 2006-06-08
Location: UK
Posts: 149
Rep Power: 3
Joncon has an average reputation (10+)
Default Re: Error installing Policy
Jules,

I know you stated that you have 'undone' all the changes you made prior to the error but can you not just push the original policy back down. Assuming you use db revision control that is?

Joncon
Reply With Quote
  #3 (permalink)  
Old 2006-12-21
jules jules is offline
Junior Member
  
Join Date: 2006-12-21
Posts: 2
Rep Power: 0
jules has an average reputation (10+)
Default Re: Error installing Policy
I don't use database revision control. But after this is fixed, I think I'll start!
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -7. The time now is 20:32.

Contact Us - CPUG Home Page - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.0.0