CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Search:

Type: Posts; User: iain grant

Search: Search took 0.00 seconds.

  1. Replies
    0
    Views
    1,324

    Windows shares via R70 to R71 VPN Link

    We currently have 2 sites connected via VPN.
    One end of the VPN has a single R70 firewall, the other end has a 2 node R71 cluster.

    Everything between the 2 sites is working well, except for...
  2. Replies
    2
    Views
    1,813

    Re: Configuring New internal subnets

    Thanks for that, I eventually figured out I had not loaded the new topology into the firewall after adding the routes.

    Once the new topology was added things worked fine.
  3. Replies
    2
    Views
    1,813

    Configuring New internal subnets

    I currently have an R70 firewall that has multiple interfaces on it.

    Our main interface is configured as follows

    eth0 :192.168.96.1 netmask 255.255.248.0 -- So this would talk to the...
  4. Replies
    3
    Views
    1,593

    Small Packet Transfer

    My company currently has two sites. One site has an R70 server and the other site has 2 R71's in a cluster. Both Sites are linked together using a permanent VPN tunnel in a star configuration.
    Both...
  5. Replies
    3
    Views
    2,076

    Stopping Bittorrent

    I'm having teething problems with blocking bittorrent.


    I have IPS enabled on the firewall.
    Our site Profile is set with IPS Mode = Prevent and Activation as IPS Policy
    Under Protections ->...
  6. Replies
    5
    Views
    2,251

    Streaming audio/video

    Is there any way to block streaming video coming through the firewall.
    With scenarios where our bandwidth is being hogged It would be nice to add this rule.

    Yes I do mean because of the world...
  7. Replies
    12
    Views
    2,454

    Re: Force R70 Network negotiation

    Yes I did try modifying it through the WebGui, with and without traffic going through the firewall and it never changed things. It always left the box at Auto-neg.

    The reason why it is not at...
  8. Replies
    12
    Views
    2,454

    Re: Force R70 Network negotiation

    Sorry , the switch is nailed to 100Mb/Full by our networks folk to match the outside link.
  9. Replies
    12
    Views
    2,454

    Re: Force R70 Network negotiation

    It's not an HP proliant it's actually a DELL PE1950 III.

    It was the switch that was moaning about the half duplex, which confirmed why my outgoing traffic was extremely low.

    It would be...
  10. Replies
    12
    Views
    2,454

    Force R70 Network negotiation

    We have been evaluating R70 and now have got a lot of the major issues resolved. I have had it running for a week live to see how it handles.

    One major problem I have seen is that network...
  11. Replies
    9
    Views
    4,055

    FIXED

    After a lot of head scratching I went back to basics again.

    So to get R70 to run i did the following.

    1. Upgraded to latest 1950 Bios
    2. Upgraded the PERC 6/i to have the latest BIOS
    3....
  12. Replies
    9
    Views
    4,055

    Re: Dell Poweredge 1950 III and R70

    This reply is irrelevant to the question on whether it works with R70.
    The R70 image is supposed to work on a Dell Poweredge 1950 III. Part of that hardware is the integrated PERC 6/i.

    Yes I did...
  13. Replies
    9
    Views
    4,055

    Re: Dell Poweredge 1950 III and R70

    Well I have to admit defeat.

    I've upgraded the bios on both the Dell box and the internal raid controller to match yours.

    No matter what I do I can't get the R70 image to boot and install the...
  14. Replies
    9
    Views
    4,055

    Re: Dell Poweredge 1950 III and R70

    I've still not managed to get this working. R70 still does not recognise the controller.

    I'm pretty sure the R70 image doesn't have the dell perc 6/i controller driver included now.
  15. Replies
    9
    Views
    4,055

    Dell Poweredge 1950 III and R70

    Has anyone got R70 successfully installed on a Dell Poweredge 1950 III.

    We have one here that I installed R65 on and worked fine. So i decided on doing a clean install of R70, went through the...
  16. Replies
    7
    Views
    4,897

    Re: Need to configure RIP v2 route

    Thanks Yheffen.

    That look similar to the ( mucking around) steps I got down to.
    Apart from I haven't done the redistribute options.

    Iain
  17. Replies
    7
    Views
    4,897

    Re: Need to configure RIP v2 route

    HI Chillyjim,

    I've got the splat pro installation ok. And i've pulled over the Advanced Routing Suite CLI guide.
    All this gives me is the command set, there are no examples of actually doing it....
  18. Replies
    7
    Views
    4,897

    Need to configure RIP v2 route

    I've asked before but never really got an answer.

    I'm migrating from Checkpoint R55 with AI on Redhat linux to Splat R70. We only use the firewall functionality and nothing else. The only gotcha...
  19. Replies
    1
    Views
    1,040

    R55 with AI to ???

    I have an old Redhat AS 3.0 system with R55 AI on it that I am replacing.

    I've pulled over R65 with splat 2.6 ( due to our new dell hardware needing 2.6 ) and have been installing and playing...
  20. Replies
    7
    Views
    1,647

    Re: Where do I start - Newbie

    Hi Barry,

    Woud have been nice to attend the class. But i'm in the UK and a bit far for it.

    Iain
  21. Replies
    7
    Views
    1,647

    Re: Where do I start - Newbie

    Thanks for the reply chillyjim,

    Good to know I do need secure platform pro.

    As for splat 26, well i pulled over the old splat and it couldn't see the network or anything. Splat 26 saw...
  22. Replies
    7
    Views
    1,647

    Where do I start - Newbie

    HI there,

    I've added a couple of posts to the forum relating to upgrading from R55 on Redhat Linux to Splat 2.6 R65.

    I'm basically new at this and piecing together all the checkpoint rules.
    ...
  23. Replies
    0
    Views
    953

    Help with Porting from R55

    [ Added this note to Linux but really it's a Splat question ]
    My company has a VPN-1/Firewall-1 R55 loaded onto Redhat Enterprise Linux v3 at the moment.

    I have just bought new hardware for it a...
  24. Help with understanding upgrade R55 to splat 26 R65

    My company has a VPN-1/Firewall-1 R55 loaded onto Redhat Enterprise Linux v3 at the moment.

    I have just bought new hardware for it a nice shiny Dell PowerEdge 1950 III.

    Now looking at the old...
  25. Replies
    3
    Views
    1,229

    Re: Help with RHEL R55 to Splat 65

    As far as I know quagga is installed to install RIP v2 protocol between eth0 and eth1.

    This is the ripd.conf file

    hostname <hostname>
    password <password>
    router rip
    version 2
    network...
  26. Replies
    3
    Views
    1,229

    Help with RHEL R55 to Splat 65

    Our company has a RHEL system running Checkpoint R55 HFA 02 with quagga underneath routing eth0 and eth1. We also have eth2 and eth3 configured for other networks ( DMZ etc .. )

    eth0 is our...
  27. Replies
    0
    Views
    1,209

    R55 HFA_20 libxrnverify.so issue

    I've just upgraded our CPfw1-R55 system using the HFA_20 upgrade and now our smart dashboard cant connect anymore.

    If I try and run fwn manually I get a reloaction error for libxrnverify.so as...
Results 1 to 27 of 27