 Event Log Error: FW-1: setting external interface to <interface_name>
Greetings from Japan!
I am running Check Point VPN-1 & FireWall-1 NG w/ AI (R55) HFA_04 on Windows Server 2003. For some reason, VPN functions of the machine occasionally gets disabled after policy updates from the management system (SmartDashboard). During the "outage" I can still access local networks routed by the firewall, as well as the internet. The following error consistently appears in Event Viewer (System) after every policy update/install, so I am guessing it has something to do with the problem.
FW1: FW-1: setting external interface to <interface_name>
When the problem occurs, the only way I can seem to get the tunnels back is by restarting the system, but the strange thing is, the above error appears again right after the OS comes online (with VPN functions back to normal until the next unlucky policy update).
Does anyone have any idea what this error means, and how to resolve it?
I confirmed the external interface is properly identified by <interface_name> and IP on the management system (Check Point device topology). I also tried manually creating an "external.if" file (containing <interface_name>) under "/conf" but this had no effect. I guess this file is only used in Linux/UNIX implementations.
At present I can't do any policy updates during the day, due to the risk of bringing inter-site connectivity down. As long as I don't do any updates, things are pretty quiet, but I don't want to keep waiting for the evening/weekend to change policies. More importantly, I don't want to keep having to restart the firewall after every update.
If anyone can shed some light on this, please let me know...  | 
Event Log Error: FW-1: setting external interface to <interface_name> 
2008-08-28 
Linear Mode
