 | ||
 cannot add rule on checkpoint FW-1 R62 | ||
| CPUG | |
| The Check Point User Group | |
| A Resource For The Check Point Community. Fast. Useful. Independent. | |
|
| |||||||
 |
| | LinkBack | Thread Tools | Display Modes |
 2008-04-16 | |||
| |||
 cannot add rule on checkpoint FW-1 R62 Just installed R62 and smartdashboard can connect to fw, but cannot add the rule, I don't know what is going on, the error messages as below, pls help. failed to connect to the module or the connection was lost.  |
| 2008-04-16 | |||
| |||
| Re: cannot add rule on checkpoint FW-1 R62 Ref your second post - yes a message like that is normal because by default there are some "Global Properties" turned on which provide so called "Implicit Rules", and you have added rules too, rules you add are "Explicit Rules". As for your first post, it's not completely clear to me what you mean, so... couple questions for you. 1) Is your SmartCenter Server and FireWall on the same box? 2) When you say you "cannot add a rule" do you mean you cannot "Install the Policy"? (I think that is what you mean). or do you mean your SmartDashboard cannot connect to the SmartCenter Server? |
| 2008-04-16 | |||
| |||
| Re: cannot add rule on checkpoint FW-1 R62 sorry to make any confuse, smartcenter and fw are the same box, the rule can be added, but when I install the policy, the error message displayed. Since this is fresh install, no any rule before, so I only add a simple rule such as host to any http accept, something like that, but failure when I install policy. smartdashboard can connect to smartcenter. |
| 2008-04-16 | |||
| |||
| Re: cannot add rule on checkpoint FW-1 R62 get a command prompt on the firewall and type the following commands: fw stat <======= this tells you what policy is installed at the moment I expect it to be "Initial Policy" cplic print <===== this tells you what license is installed "failed to connect to the module" normally means that SIC is not established - and its a long time ago since I did a stand alone installation, but I thought that setting up SIC was not required on a STAND ALONE configuration like yours. but lets check anyway: Double click up your FW object in Smart Dasboard, on the General Tab: 1) is Firewall selected? 2) select the communication button and select TEST SIC - does is say "communicating"? Last edited by coldark; 2008-04-16 at 02:18. |
|
| Thread Tools | |
| Display Modes | |
| |
Linear Mode
