[Date Prev][Date Next][Thread Prev][Thread Next][Thread Index]

RE: [fw1-gurus] VPN 1 Edge Management

Subject: RE: [fw1-gurus] VPN 1 Edge Management
From: "Ray Pesek" <raypesek@xxxxxxxxxxxx>
To: "'Rawnak Choudhury'" <choudhuryr@xxxxxxxxxxxxxxx>, "'FireWall-1 Guru's mailinglist'" <fw1-gurus@xxxxxxxxxxxxxxxxxx>
Date: Sat, 30 Dec 2006 13:30:28 -0500

A couple of things:

There have been a lot of fixes for Edge devices for R55. I'd recommend
moving to a later HFA if possible. HFA 18 is current.

That firmware is old as well. While there is both a 7.x and a 6.5.x
firmware, I'm still using the latest version of 6.0 with R55 and it's fine.
The later versions also allow you to use a cli command and see the implied
rules on the Edge. Yes, it has them, too. :-)

If you upgrade the Edge firmware, you'll need to upgrade the libsw files on
the SmartCenter as well or you won't be able t apply a policy.

I kind of hate to ask this, but it's missed occasionally. After you created
the policy on the SmartCenter, did you remember to push it to the Edge
profile? If not, only a default policy is applied to the Edge.

HTH,

Ray

> -----Original Message-----
> From: Rawnak Choudhury [mailto:choudhuryr@xxxxxxxxxxxxxxx] 
> Sent: Thursday, December 28, 2006 09:19
> To: FireWall-1 Guru's mailinglist
> Subject: [fw1-gurus] VPN 1 Edge Management
> 
> 
> Hi
> 
> We run SPLAT R55 HFA_12
> 
> I am setting up a VPN Edge X32 Device with Firmware 5.0.82x.
> The actual VPN is working i.e. it is creating a tunnel and 
> all data from
> the remote site is being sent down the tunnel and all info is 
> being logged
> on my smart tracker.
> 
> What is not working is that when I send a policy down to the Edge it
> appears to load ( I do not get any errors on SmartDash Board)
> Also, when I run diagnostic on the Edge it says the policy I 
> applied is
> running. But it seems to make no difference to the traffic 
> that is being
> set down the tunnel !
> i.e if I say block traffic to a specific network  it has no effect.
> 
> Can any one help ?
> 
> Also on a different question, does it matter if set the Edge device to
> have a dynamic IP address.
> Does it make any difference to the way it works.
> 
> Rawnak
> 
> 
> 
> 
> 
> 
> 
> 
> 
> ---------------------------------------------------------------------
> FireWall-1 Gurus Mailing List (http://fw1-gurus.phoneboy.com/)
> To unsubscribe, mailto:fw1-gurus-unsubscribe@xxxxxxxxxxxxxxxxxx
> For additional commands, mailto:fw1-gurus-help@xxxxxxxxxxxxxxxxxx
> 
> 



---------------------------------------------------------------------
FireWall-1 Gurus Mailing List (http://fw1-gurus.phoneboy.com/)
To unsubscribe, mailto:fw1-gurus-unsubscribe@xxxxxxxxxxxxxxxxxx
For additional commands, mailto:fw1-gurus-help@xxxxxxxxxxxxxxxxxx

References:
- [fw1-gurus] VPN 1 Edge Management
  - From: Rawnak Choudhury

Prev by Date: Re: [fw1-gurus] Nokia Cluster with NGX and Cpu/Cluster Problem
Previous by thread: Re: [fw1-gurus] VPN 1 Edge Management
Next by thread: Re: [fw1-gurus] Nokia Cluster with NGX and Cpu/Cluster Problem
Index(es):
- Date
- Thread