Jeff Velten, Systems Engineer
Miller Information Technologies - http://www.milleraviation.com/mithome.htm
Phone: 800-288-4228
Fax: 607-770-0670
IBM Certified Specialist - AS/400 Client Access
Certified Check Point Security Engineer
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
I'm working on a few "bugs" for a customer where I am for some reason
unable to display an X windows program to a SecuRemote client (the
customer is doing NAT and SecuRemote Encapsulation). I only was able to
create the "problem" in one specific case, but it did not involve
different SecuRemote versions, but rather OS patch levels on the
firewall itself.
I need to do some more testing on this, but I think that FireWall-1 3.0b
with patch 3064 (or 3072) will solve the problem. You should also
install *all* Microsoft hotfixes (yes, even the joystick one) as this is
what Check Point recommends.
-- Dameon
>Here's a puzzler for you... For some time, I have been unsuccessfully
>trying to get a Lotus Notes client to work with SecuRemote 3.0b (Win95b
>machine). Recently, we upgraded several machines to Win98, and
amazingly,
>I'm now able to get Notes sessions going with either SecuRemote 3.0 or
4.0.
>Thinking this must have had something to do with the enhancements to
DUNS
>in Win98, I then tested SecuRemote 3.0 and 4.0 with Win95b and both
DUNS
>1.0 and 1.2. No luck...
>The symptoms of the Notes connection not working are as follows. The
>initial password challenge is successful on the Notes server, but when
you
>attempt to open any database, the connection times out. In the firewall
>log, the only traffic visible is the initial decrypted packet going to
the
>Notes server after authentication.
>Has anyone seen anything similar?
>Background info: FW-1 is running on NT4.0, SP3, with GetAdmin and
TearDrop
>hotfixes.
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com
TIA,
Jeff
To: fw-1-mai...@lists.us.checkpoint.com, Jeff
Velten/Miller Aviation
cc:
Subject: Re: [FW1] SecuRemote and Lotus Notes
You wouldn't happen to be doing encapsulation and NAT, would you?
I'm working on a few "bugs" for a customer where I am for some reason
unable to display an X windows program to a SecuRemote client (the
customer is doing NAT and SecuRemote Encapsulation). I only was able to
create the "problem" in one specific case, but it did not involve
different SecuRemote versions, but rather OS patch levels on the
firewall itself.
I need to do some more testing on this, but I think that FireWall-1 3.0b
with patch 3064 (or 3072) will solve the problem. You should also
install *all* Microsoft hotfixes (yes, even the joystick one) as this is
what Check Point recommends.
-- Dameon
>Yes, we are doing both encapsulation and NAT. Also I neglected to
mention
>that we have patch 3064 applied.
I would open up a trouble ticket with your reseller then, though you
should probably install patch 3072 first (just because Check Point will
probably require it).
>I think this may have been asked before, but what is the "official"
word on
>applying hotfixes after FW-1 has been installed? Is this recommended,
or
>would I be better off uninstalling the firewall, applying the remaining
>hotfixes, and then re-installing FW-1?
You should be able to install the hotfixes on top of your existing
installation. You can install them all at once and reboot at the end.
--
Dameon D. Welch dwe...@phoneboy.com
a.k.a. "PhoneBoy" http://www.phoneboy.com
FireWall-1 FAQs are at http://www.phoneboy.com/fw1
The views herein may not be those of my employer. Fnord.
______________________________________________________
Get Your Private, Free Email at http://www.hotmail.com