[prev in list] [next in list] [prev in thread] [next in thread]
List: firewall-1
Subject: Re: [FW-1] WebSense UFP Integration
From: "Aylton Souza, CISSP" <ayltonsz () DIALDATA ! COM ! BR>
Date: 2002-08-31 9:41:06
[Download RAW message or body]
Websense UFP IntegrationBruno,
A few things you may take a look:
Security servers - How many users are there using internet access (http)?
Depending on your configuration, the problem may be related to memory, cpu, file \
descriptors, # of simultaneous connections supported in your configuration (you may \
change that), or something.
Something may also help is to add to crontab something like fw ctl pstat, lsof, fw \
tab -t connections -s and other debug commands (including debug to httpd process) to \
collect more info and co-relate events that may lead you to this problem,
Security servers may be tough to debug, but with some adjusts it works fine,
Best regards
Aylton
----- Original Message -----
From: Bruno Nilo Santiago Silva
To: FW-1-MAILINGLIST@beethoven.us.checkpoint.com
Sent: Monday, September 02, 2002 7:23 AM
Subject: Re: [FW-1] WebSense UFP Integration
I already talked to the Websense support and I was informed about a possible \
configuration problem with the FW1 version I use.
We are not exceeding the quantity of licensed users.
----- Original Message -----
From: Walker, Mike
To: FW-1-MAILINGLIST@beethoven.us.checkpoint.com
Sent: Friday, August 30, 2002 4:59 PM
Subject: Re: [FW-1] WebSense UFP Integration
R U exceeding you user/connect licenses ?
-----Original Message-----
From: Zeltser, Roman [mailto:Roman.Zeltser@SSA.GOV]
Sent: Friday, August 30, 2002 12:43 PM
To: FW-1-MAILINGLIST@beethoven.us.checkpoint.com
Subject: Re: [FW-1] WebSense UFP Integration
Did you talk to WebSense tech support?
**********************************
Roman Zeltser,
@National Computer Center, DNE
RS Information Systems
-----Original Message-----
From: Bruno Nilo Santiago Silva [mailto:bruno@EINSTEIN.BR]
Sent: Friday, August 30, 2002 6:51 AM
To: FW-1-MAILINGLIST@beethoven.us.checkpoint.com
Subject: [FW-1] Websense UFP Integration
Hi,
We encountered problems integrating Websense with Checkpoint FW-1 \
SecurePlatform FP2. There was no problem after we activated URL verification. But \
after a while (4 to 5 hours) the internet access started to be slow and many pages \
weren't accessable anymore, nor categroized. Sending back an error-message to the \
firewall: "FW: Access Denied". The firewall reacts normally after executing the \
commands cpstop and cpstart.
Someone can help me?
Thanks,
Bruno Silva
---
Incoming mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.384 / Virus Database: 216 - Release Date: 8/21/2002
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.384 / Virus Database: 216 - Release Date: 8/21/2002
St. Joseph. Celebrating 100 Years Of Healthcare You Can Have Faith In.
(1902-2002)
++++++++++++++++++++++ Confidentiality Notice +++++++++++++++++++++
The information in this e-mail may be confidential and/or privileged. This e-mail \
is intended to be reviewed by only the individual or organization named above. If you \
are not the intended recipient or an authorized representative of the intended \
recipient, you are hereby notified that any review, dissemination or copying of this \
e-mail and its attachments, if any, or the information contained herein is \
prohibited. If you have received this e-mail in error, please immediately notify the \
sender by return e-mail and delete this e-mail from your system.
Thank You.
[Attachment #3 (text/html)]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD><TITLE>Websense UFP Integration</TITLE>
<META http-equiv=Content-Type content="text/html; charset=iso-8859-1">
<META content="MSHTML 5.50.4919.2200" name=GENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=#ffffff>
<DIV><FONT face=Arial size=2>Bruno,</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>A few things you may take a look:</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Security servers - How many users are there using
internet access (http)?</FONT></DIV>
<DIV><FONT face=Arial size=2>Depending on your configuration, the problem may be
related to memory, cpu, file descriptors, # of simultaneous connections
supported in your configuration (you may change that), or
something.</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Something may also help is to add to crontab
something like fw ctl pstat, lsof, fw tab -t connections -s and other debug
commands (including debug to httpd process) to collect more info and co-relate
events that may lead you to this problem,</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Security servers may be tough to debug, but with
some adjusts it works fine,</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Best regards</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV><FONT face=Arial size=2>Aylton</FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV>----- Original Message ----- </DIV>
<BLOCKQUOTE dir=ltr
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #000000 \
2px solid; MARGIN-RIGHT: 0px"> <DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=bruno_nilo@HOTMAIL.COM href="mailto:bruno_nilo@HOTMAIL.COM">Bruno
Nilo Santiago Silva</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A
title=FW-1-MAILINGLIST@beethoven.us.checkpoint.com
href="mailto:FW-1-MAILINGLIST@beethoven.us.checkpoint.com">FW-1-MAILINGLIST@beethoven.us.checkpoint.com</A> \
</DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Monday, September 02, 2002 7:23
AM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> Re: [FW-1] WebSense UFP
Integration</DIV>
<DIV><BR></DIV>
<DIV>
<P><FONT color=#008000>I already talked to the Websense support and I was
informed about a possible configuration problem with the FW1 version I
use.</FONT></P>
<P><FONT color=#008000>We are not exceeding the quantity of licensed
users.</FONT></P></DIV>
<BLOCKQUOTE dir=ltr
style="PADDING-RIGHT: 0px; PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: \
#000000 2px solid; MARGIN-RIGHT: 0px"> <DIV style="FONT: 10pt arial">----- Original \
Message ----- </DIV> <DIV
style="BACKGROUND: #e4e4e4; FONT: 10pt arial; font-color: black"><B>From:</B>
<A title=MikeW@SJHS.ORG href="mailto:MikeW@SJHS.ORG">Walker, Mike</A> </DIV>
<DIV style="FONT: 10pt arial"><B>To:</B> <A
title=FW-1-MAILINGLIST@beethoven.us.checkpoint.com
href="mailto:FW-1-MAILINGLIST@beethoven.us.checkpoint.com">FW-1-MAILINGLIST@beethoven.us.checkpoint.com</A> \
</DIV>
<DIV style="FONT: 10pt arial"><B>Sent:</B> Friday, August 30, 2002 4:59
PM</DIV>
<DIV style="FONT: 10pt arial"><B>Subject:</B> Re: [FW-1] WebSense UFP
Integration</DIV>
<DIV><BR></DIV>
<DIV><FONT face=Arial color=#ff0000 size=2><SPAN
class=257585819-30082002> R U exceeding you user/connect licenses
?</SPAN></FONT></DIV>
<BLOCKQUOTE dir=ltr style="MARGIN-RIGHT: 0px">
<DIV class=OutlookMessageHeader><FONT face="Times New Roman"
size=2>-----Original Message-----<BR><B>From:</B> Zeltser, Roman
[mailto:Roman.Zeltser@SSA.GOV]<BR><B>Sent:</B> Friday, August 30, 2002
12:43 PM<BR><B>To:</B> <A
href="mailto:FW-1-MAILINGLIST@beethoven.us.checkpoint.com">FW-1-MAILINGLIST@beethoven.us.checkpoint.com</A><BR><B>Subject:</B> \
Re: [FW-1] WebSense UFP Integration<BR><BR></FONT></DIV>
<DIV><FONT face=Arial color=#0000ff size=2><SPAN
class=125474218-30082002>Did you talk to WebSense tech
support?</SPAN></FONT></DIV>
<DIV><FONT face=Arial size=2></FONT> </DIV>
<DIV class=Section1>
<P><B><SPAN
style="FONT-SIZE: 10pt; COLOR: teal; FONT-FAMILY: \
Arial">**********************************</SPAN></B> <BR><B><SPAN
style="FONT-SIZE: 10pt; COLOR: teal; FONT-FAMILY: Arial">Roman
Zeltser,</SPAN></B> <BR><B><SPAN
style="FONT-SIZE: 10pt; COLOR: blue; FONT-FAMILY: Arial">@National
Computer Center</SPAN></B><B><SPAN
style="FONT-SIZE: 10pt; COLOR: teal; FONT-FAMILY: Arial">,</SPAN></B>
<B><SPAN
style="FONT-SIZE: 10pt; COLOR: teal; FONT-FAMILY: \
Arial">DNE</SPAN></B><BR><B><SPAN
style="FONT-SIZE: 10pt; COLOR: teal; FONT-FAMILY: Arial">RS Information
Systems <SPAN style="mso-spacerun: yes"> </SPAN></SPAN></B><BR>
</P></DIV>
<BLOCKQUOTE style="MARGIN-RIGHT: 0px">
<DIV class=OutlookMessageHeader dir=ltr align=left><FONT face=Tahoma
size=2>-----Original Message-----<BR><B>From:</B> Bruno Nilo Santiago
Silva [mailto:bruno@EINSTEIN.BR]<BR><B>Sent:</B> Friday, August 30, 2002
6:51 AM<BR><B>To:</B>
FW-1-MAILINGLIST@beethoven.us.checkpoint.com<BR><B>Subject:</B> [FW-1]
Websense UFP Integration<BR><BR></DIV></FONT>
<P><FONT size=2>Hi,</FONT> </P>
<P><FONT size=2>We encountered problems integrating Websense with
Checkpoint FW-1 SecurePlatform FP2. There was no problem after we
activated URL verification. But after a while (4 to 5 hours) the
internet access started to be slow and many pages weren't accessable
anymore, nor categroized. Sending back an error-message to the firewall:
"FW: Access Denied". The firewall reacts normally after executing the
commands cpstop and cpstart.</FONT></P>
<P><FONT size=2>Someone can help me?</FONT> </P>
<P><FONT size=2>Thanks,</FONT> <BR><FONT size=2>Bruno Silva</FONT>
</P><BR>
<P><FONT size=2>---<BR>Incoming mail is certified Virus Free.<BR>Checked
by AVG anti-virus system (http://www.grisoft.com).<BR>Version: 6.0.384 /
Virus Database: 216 - Release Date:
8/21/2002<BR></FONT></P></BLOCKQUOTE><BR>
<P><FONT size=2>---<BR>Outgoing mail is certified Virus Free.<BR>Checked
by AVG anti-virus system (http://www.grisoft.com).<BR>Version: 6.0.384 /
Virus Database: 216 - Release Date:
8/21/2002<BR></FONT></P></BLOCKQUOTE><BR>
<P><I><FONT face=Arial size=2></FONT></I></P>
<P><I><FONT face=Arial size=2>St. Joseph. Celebrating 100 Years Of
Healthcare You Can Have Faith In. </FONT></I></P>
<P><I><FONT face=Arial size=2>(1902-2002) </FONT></I></P>
<P><FONT face=Arial size=2></FONT></P>
<P><B><FONT face=Arial size=2>++++++++++++++++++++++ Confidentiality Notice
+++++++++++++++++++++</FONT></B></P>
<P><FONT face=Arial size=2>The information in this e-mail may be
confidential and/or privileged. This e-mail is intended to be reviewed by
only the individual or organization named above. If you are not the intended
recipient or an authorized representative of the intended recipient, you are
hereby notified that any review, dissemination or copying of this e-mail and
its attachments, if any, or the information contained herein is prohibited.
If you have received this e-mail in error, please immediately notify the
sender by return e-mail and delete this e-mail from your system. </FONT></P>
<P><FONT face=Arial size=2>Thank
You.</FONT></P></BLOCKQUOTE></BLOCKQUOTE></BODY></HTML>
=================================================
To set vacation, Out Of Office, or away messages,
send an email to LISTSERV@lists.us.checkpoint.com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner@ts.checkpoint.com
=================================================
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic