Account Options

  1. Sign in
The old Google Groups will be going away soon, but your browser is incompatible with the new version.
Google Groups Home
« Groups Home
dtc.mailing-list.fw-1-mailinglist
About this group
Subscribe to this group
This is a Usenet group - learn more
Message from discussion Disappearing security policy!
The group you are posting to is a Usenet group. Messages posted to this group will make your email address visible to anyone on the Internet.
Your reply message has not been sent.
Your post was successful
 
From:
To:
Cc:
Followup To:
Add Cc | Add Followup-to | Edit Subject
Subject:
Validation:
For verification purposes please type the characters you see in the picture below or the numbers you hear by clicking the accessibility icon. Listen and type the numbers you hear
 
fw-1-mailinglist-owner  
View profile  
 More options Mar 21 1998, 3:00 am
Newsgroups: dtc.mailing-list.fw-1-mailinglist
From: fw-1-mailinglist-ow...@us.checkpoint.com
Date: 1998/03/21
Subject: RE: [FW1] Disappearing security policy!
Print | View thread | Show original | Report this message | Find messages by this author

I remember there is a way to use a fw command to force a given ruleset back
into the ruleset database, but I can't find it now; all I remember is that it
used the flag G.  I managed to lose the timestamp sync between rules and
objects once, and had to do this for each rule set (I keep old rulesets around
for a while) I wanted to be able to see again in the GUI.  If you can't find
it, mail me and I will look a little harder.

Neil

----------

At 15:41 03/20/98 +0100, you wrote:

> Hi Joseph,

>One solution is to re-include the content of the .W file into the
rulebases.fws.

>To do that:

>1-  your must add a ":rulebases" statement declaring your policy just
>after the first "(" of the file. It should look like :

> :rule-base ("##YourPolicyname           

>where Your Policyname is the name of... your policy !

>2- Then include YourPolicyname.W file. Your must suppress the two last
>statements (As I remember it sould be ":filename" and ":rulebase").

>3- Add a closing ")" just before the following ":rulebase" statement
>(declaring the "standard" policy...which is empty).

>Automagically, you should be able to open your policy again (using the
>"File" menu) .

>Hope this helps.

>Lionel MOYAT
>Consultant
>E-mail: 92.Lionel.MO...@aist.enst.fr

>DEVOTeam "Your Network Team"
>113, Rue Anatole France
>92300 Levallois-Perret
>FRANCE

>> -----Message d'origine-----
>> De: j.fa...@olivettiricerca.it [SMTP:j.fa...@olivettiricerca.it]
>> Date: vendredi 20 mars 1998 09:55
>> À: fw-1-mailingl...@us.checkpoint.com
>> Objet: [FW1] Disappearing security policy!

>> Hello,

>> I was remotely modifying (through the GUI from a Windows95 computer) a
>> security policy on a FW-1 3.0b with NTWS 3.51 and suddenly everything froze
>> and I had to perform the usual MS emergency maneuver : reboot. The problem
>> was my W95 client, not the FW-1 machine. When I got back up and logged on
>> to FW-1 all I could see of my policy was....nothing! No more lines in the
>> policy. The same policy was now called 'Standard' although I had been using
>> a policy with another name. So I thought I could simply reload my policy
>> from those already catalogued, but when I tried to select the policy, there
>> were no more policies available! Only 'Standard' was left!! The NAT rules
>> were still there though and so were my network objects and users.

>> I can see all my other policies in the $FWDIR/conf directory (.pf,.W, etc.)
>> but FW-1 does not see them anymore. Obviously the data contained in the
>> rulebases.fws, which probably contains pointers to the other policies, has
>> somehow been corrupted. In fact it is only 1KBytes in length and has its
>> date/time set to the same time at which the failure occurred.

>> I see that other files (fwauth & objects) have backup versions, but not
>> rulebases.fws. I've got a backup tape which I can use to restore the info,
but I
>> thought that I wouldn't have changed anything on the FW-1 machine if I
didn't
>> try to commit my changes in some fashion (i.e. by installing or saving the
>> policy). I was just wondering whether anyone had any insight as to how the
>> updating is performed within the database and what techniques (if any) are
>> used to prevent (or at least try to prevent) what happened to me.

>> Joe

>>   ***********************************************
>>   *  Joseph Favia Jr.                           *
>>   *  Internet/Intranet & Networking             *
>>   *  OLIVETTI Ricerca S.C.p.A.                  *
>>   *  Contrada La Marchesa                    *
>>   *  S.S.271 Km.8.680                           *
>>   *  70020 Bitritto (BA) - Italy                *
>>   -----------------------------------------------
>>   *  Phone : +39 80 635-2104                    *
>>   *  Fax   : +39 80 635-2089         *
>>   *  E-mail: j.fa...@olivettiricerca.it         *
>>   ***********************************************

=========================================================================== =====
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
=========================================================================== =====

 
You must Sign in before you can post messages.
To post a message you must first join this group.
Please update your nickname on the subscription settings page before posting.
You do not have the permission required to post.
Create a group - Google Groups - Google Home - Terms of Service - Privacy Policy
©2013 Google