Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

[FW1] SecuRemote and Lotus Notes

4 views
Skip to first unread message

jve...@milleraviation.com

unread,
Aug 7, 1998, 3:00:00 AM8/7/98
to fw-1-mai...@lists.us.checkpoint.com

Here's a puzzler for you... For some time, I have been unsuccessfully
trying to get a Lotus Notes client to work with SecuRemote 3.0b (Win95b
machine). Recently, we upgraded several machines to Win98, and amazingly,
I'm now able to get Notes sessions going with either SecuRemote 3.0 or 4.0.
Thinking this must have had something to do with the enhancements to DUNS
in Win98, I then tested SecuRemote 3.0 and 4.0 with Win95b and both DUNS
1.0 and 1.2. No luck...
The symptoms of the Notes connection not working are as follows. The
initial password challenge is successful on the Notes server, but when you
attempt to open any database, the connection times out. In the firewall
log, the only traffic visible is the initial decrypted packet going to the
Notes server after authentication.
Has anyone seen anything similar?
Background info: FW-1 is running on NT4.0, SP3, with GetAdmin and TearDrop
hotfixes.

Jeff Velten, Systems Engineer
Miller Information Technologies - http://www.milleraviation.com/mithome.htm
Phone: 800-288-4228
Fax: 607-770-0670
IBM Certified Specialist - AS/400 Client Access
Certified Check Point Security Engineer


================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================

fw-1-mailin...@lists.us.checkpoint.com

unread,
Aug 8, 1998, 3:00:00 AM8/8/98
to fw-1-mai...@lists.us.checkpoint.com, jve...@milleraviation.com

You wouldn't happen to be doing encapsulation and NAT, would you?

I'm working on a few "bugs" for a customer where I am for some reason
unable to display an X windows program to a SecuRemote client (the
customer is doing NAT and SecuRemote Encapsulation). I only was able to
create the "problem" in one specific case, but it did not involve
different SecuRemote versions, but rather OS patch levels on the
firewall itself.

I need to do some more testing on this, but I think that FireWall-1 3.0b
with patch 3064 (or 3072) will solve the problem. You should also
install *all* Microsoft hotfixes (yes, even the joystick one) as this is
what Check Point recommends.

-- Dameon

>Here's a puzzler for you... For some time, I have been unsuccessfully
>trying to get a Lotus Notes client to work with SecuRemote 3.0b (Win95b
>machine). Recently, we upgraded several machines to Win98, and
amazingly,
>I'm now able to get Notes sessions going with either SecuRemote 3.0 or
4.0.
>Thinking this must have had something to do with the enhancements to
DUNS
>in Win98, I then tested SecuRemote 3.0 and 4.0 with Win95b and both
DUNS
>1.0 and 1.2. No luck...
>The symptoms of the Notes connection not working are as follows. The
>initial password challenge is successful on the Notes server, but when
you
>attempt to open any database, the connection times out. In the firewall
>log, the only traffic visible is the initial decrypted packet going to
the
>Notes server after authentication.
>Has anyone seen anything similar?
>Background info: FW-1 is running on NT4.0, SP3, with GetAdmin and
TearDrop
>hotfixes.


______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com

jve...@milleraviation.com

unread,
Aug 8, 1998, 3:00:00 AM8/8/98
to Dameon Welch, fw-1-mai...@lists.us.checkpoint.com

Yes, we are doing both encapsulation and NAT. Also I neglected to mention
that we have patch 3064 applied.
I think this may have been asked before, but what is the "official" word on
applying hotfixes after FW-1 has been installed? Is this recommended, or
would I be better off uninstalling the firewall, applying the remaining
hotfixes, and then re-installing FW-1?

TIA,
Jeff





To: fw-1-mai...@lists.us.checkpoint.com, Jeff
Velten/Miller Aviation

cc:



Subject: Re: [FW1] SecuRemote and Lotus Notes


You wouldn't happen to be doing encapsulation and NAT, would you?

I'm working on a few "bugs" for a customer where I am for some reason
unable to display an X windows program to a SecuRemote client (the
customer is doing NAT and SecuRemote Encapsulation). I only was able to
create the "problem" in one specific case, but it did not involve
different SecuRemote versions, but rather OS patch levels on the
firewall itself.

I need to do some more testing on this, but I think that FireWall-1 3.0b
with patch 3064 (or 3072) will solve the problem. You should also
install *all* Microsoft hotfixes (yes, even the joystick one) as this is
what Check Point recommends.

-- Dameon


fw-1-mailin...@lists.us.checkpoint.com

unread,
Aug 8, 1998, 3:00:00 AM8/8/98
to fw-1-mai...@lists.us.checkpoint.com, jve...@milleraviation.com

>Yes, we are doing both encapsulation and NAT. Also I neglected to
mention
>that we have patch 3064 applied.

I would open up a trouble ticket with your reseller then, though you
should probably install patch 3072 first (just because Check Point will
probably require it).

>I think this may have been asked before, but what is the "official"
word on
>applying hotfixes after FW-1 has been installed? Is this recommended,
or
>would I be better off uninstalling the firewall, applying the remaining
>hotfixes, and then re-installing FW-1?

You should be able to install the hotfixes on top of your existing
installation. You can install them all at once and reboot at the end.

--
Dameon D. Welch dwe...@phoneboy.com
a.k.a. "PhoneBoy" http://www.phoneboy.com
FireWall-1 FAQs are at http://www.phoneboy.com/fw1
The views herein may not be those of my employer. Fnord.


______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com

0 new messages