CPUG: The Check Point User Group

Resources for the Check Point Community, by the Check Point Community.


Tim Hall has done it again! He has just released the 2nd edition of "Max Power".
Rather than get into details here, I urge you to check out this announcement post.
It's a massive upgrade, and well worth checking out. -E

 

Search:

Type: Posts; User: gyovel

Search: Search took 0.00 seconds.

  1. Re: update from R77.20 to R77.30 Installed with Errors

    Hi Florian

    there are options to upgrade with minimum down time, like connectivity upgrade.
    Connectivity upgrade can be used for major versions upgrade (R76/R75.40 -> R77) only.
    for minor version...
  2. Thread: Retag VLAN

    by gyovel
    Replies
    4
    Views
    1,161

    Re: Retag VLAN

    Hi Colin

    in general all the configuration is done on mgmt and push to the gateway when there is a live link between them.
    the local.vsall copied to the module, containing entire configuration. ...
  3. Replies
    1
    Views
    3,001

    Re: FTP List is not working on R77.30

    Hi

    Is connection passing on correct rule?
    does this rule has logging?

    if you do not see any log record, how do you know this is a check point issue?

    you can try to run the fw ctl zdebug...
  4. Thread: Retag VLAN

    by gyovel
    Replies
    4
    Views
    1,161

    Re: Retag VLAN

    Colin,

    Magic is only in legends...
    the change is in SDB and then provion to GW by click the OK button.
    I think this kind of change also require policy install on VS (follow instructions on GUI)...
  5. Replies
    6
    Views
    5,805

    Re: R80 (pre-mature speculation)

    Release date is still unknown but there is good reason to wait and get this product.

    Here are some more goods of it,

    1. SmartLog work better with high efficiency and reduced search time....
  6. Re: dropped by fw_filter_chain Reason: chain hold failed

    Hi

    the hold_table is being filled up, most likey you use a rule containing domain objects on the beginning of the rulebase.
    almost each packet that enters the rulebase and reaches this specific...
  7. Thread: MGCP

    by gyovel
    Replies
    2
    Views
    1,298

    Re: MGCP

    Hi

    To whom it may concern, do not take my previous suggestion for granted.
    in order to give best solution, there is need to verify configuration and get log and debug.
    you will need to contact...
  8. Replies
    10
    Views
    12,577

    Re: fwha_mac_magic and fwha_mac_forward_magic

    In CP clusterXL when there are few that sharing same subnet you should expect to get
    message in tracker, "cluster member detected a problem"
    this when connecting multiple clusters to the same...
  9. Replies
    31
    Views
    11,796

    Re: Appliance vs open server?

    Hi

    When you decide you want information security system to protect your network
    You have to first understand what your needs?
    What size of the network?
    What volume of network activity...
  10. Re: Question about NAT and accessing the external IP from the inside

    Hi

    I am not sure that NAT is supported on firewall in bridge mode.
    try to do the same on firewall that act as layer 3 device rather then bridge mode.

    Regards,
    Guy
  11. Re: Video conference dropping connection due to ICMP errors

    Hi

    I believe the icmp drop is not the problem, it is a symptop, while the problem should be investigated further.
    the limitation of R70 is solved in advance version and releated to icmp...
  12. Thread: MGCP

    by gyovel
    Replies
    2
    Views
    1,298

    Re: MGCP

    Hi

    (1) solution for old GW's ->
    sk65072 - How to disable 'fw early SIP nat' chain / SIP inspection

    (2) the parameter, mgcp_standard_hide_nat, has been moved to the GUI in R75.40VS and above....
  13. Replies
    19
    Views
    7,640

    Re: Bash Vulnerability

    Hi

    I read this article today and it presents a slightly different approach with regard to this new bug.
    It is strongly recommended to read and learn.
    ...
  14. Re: VSX cluster completely stalled when stopping member

    Hi

    sk98750 Traffic outage after running 'cpstop' command on the Standby member of R75.40VS VSX cluster

    Regards,
    Guy
  15. Replies
    3
    Views
    922

    Re: VS connections limit

    Hi

    What exactly are you trying to say?
    that you are waiting on answer for 2 days for a question that can be
    answer with looking into the admin guide (not even VSX in particular) or search in...
  16. Replies
    3
    Views
    13,662

    Re: Completly disable any kind of SIP inspection

    Hi

    Why is the firewall still doing some kind of inspect on the traffic?
    rhetorical question :-) because it a firewall and this what firewall does.
    if you want to just pass tcp / udp traffic...
  17. Replies
    5
    Views
    3,272

    Re: endpoint connect location awareness issue

    Thanks for the feedback.

    it is configured Interface topology based (recommended setting)
    The location is determined by the interface the client's connection was received upon,
    whether it is...
  18. Replies
    5
    Views
    3,272

    endpoint connect location awareness issue

    Hi

    I would like to see if the issue below is describing common issue with location awareness feature.

    The testing was
    ============
    ==> endpoint client connected to vpn
    ==> ep client move...
  19. Replies
    0
    Views
    1,191

    UAS and Sun Fire X4200 M2

    Hi all attends

    I have SecurePlatform NGX (ENFv26) Build 124 and server Sun Fire X4200 M2. After configured VPN-1 a module uag don^t work. It^s the error after running uagstart:
    [Expert@FW-S03]#...
  20. Replies
    2
    Views
    2,640

    Installing on Solaris T2000 fail - R60 + R65

    I have servers of, sun platform T2000 with Solaris 10 OS.
    I intend to install NGX R60 and R65 on them. (stand alone mode)
    have all the packages and patches as written in the release notes.
    the...
  21. Replies
    0
    Views
    1,199

    secure client multiple authentication popup

    hello

    network topology description
    There are 3 clusters.
    One in between Internet and the main private network
    (lets call it FW1) and two others clusters in between
    the main private network...
  22. possible reason for message alert in smart tracker

    Hello

    I had this issue with cluster of nokia 3.8.1 running NGX R62.
    once in several days I see this error log on the smart tracker:
    "cluster_info: (3rd Party Cluster) State changed of member 1...
Results 1 to 22 of 22