[prev in list] [next in list] [prev in thread] [next in thread]
List: firewall-1
Subject: RE: [FW1] SMTP & "mailbox unavailable"
From: "Paquette, Trevor" <TrevorPaquette () metronet ! ca>
Date: 1999-08-31 15:30:34
[Download RAW message or body]
This one got us for about 6 months while Checkpoint, asked and re-asked for
configs, patches etc.. They were of
no help on this one.
Kudos went to Sun Support for figuring out this one for us.
Take a close look at your objects.C file.
The object that has the following line in it MUST be ahead of any other
object in that file..
: firewall (installed)
Ex:
If you have the following, then you'll have to switch around the
hme0.gate.mcc.net and qaa2.gate.mcc.net objects around within the objects.C
file.. (Use your favorite editor for this..)
OLD objects.C file:
(
:anyobj (Any
:color (Blue)
)
:superanyobj (
: Any
)
:netobj (netobj
:default Any
:menu_selection (show_netobj)
: (qaa2.fw
:color (firebrick)
:type (host)
:host_schemes_val (51)
:host_schemes_names (
: (SecurID)
: ("S/Key")
: (RADIUS)
: (Defender)
)
:comments ("Internet Interface")
:location (external)
:firewall (not-installed) *** <- Notice this...
:exportable (false)
:ipaddr (192.168.2.1)
:show_in_menus (true)
)
: (hme0.fw
:color (red)
:type (gateway)
:host_schemes_val (27)
:host_schemes_names (
: ("S/Key")
: (SecurID)
: ("Internal Password")
: (RADIUS)
)
:comments ()
:location (internal)
:firewall (installed) *** <- Notice this..
:exportable (false)
:ipaddr (10.1.2.2)
:show_in_menus (true)
:sysName ()
:sysLocation ()
:sysContact ()
:sysDescr ()
:read_community ()
:write_community ()
:use_encapsulation (false)
:encdomain (
:icon (empty)
)
:if-0 (hme0.0
:iffullname (hme0)
:ipaddr (10.1.2.2)
:netmask (255.255.255.0)
:ifname (hme)
:ifnum (0)
:netaccess (Any
:color (Blue)
)
)
:if-1 (qaa0.2
:iffullname (qaa0)
:ipaddr (192.168.2.1)
:netmask (255.255.255.0)
:ifname (qaa)
:ifnum (0)
:netaccess (Any
:color (Blue)
)
)
)
New version:
(
:anyobj (Any
:color (Blue)
)
:superanyobj (
: Any
)
:netobj (netobj
:default Any
:menu_selection (show_netobj)
: (hme0.fw
:color (red)
:type (gateway)
:host_schemes_val (27)
:host_schemes_names (
: ("S/Key")
: (SecurID)
: ("Internal Password")
: (RADIUS)
)
:comments ()
:location (internal)
:firewall (installed) *** <- Notice this..
:exportable (false)
:ipaddr (10.1.2.2)
:show_in_menus (true)
:sysName ()
:sysLocation ()
:sysContact ()
:sysDescr ()
:read_community ()
:write_community ()
:use_encapsulation (false)
:encdomain (
:icon (empty)
)
:if-0 (hme0.0
:iffullname (hme0)
:ipaddr (10.1.2.2)
:netmask (255.255.255.0)
:ifname (hme)
:ifnum (0)
:netaccess (Any
:color (Blue)
)
)
:if-1 (qaa0.2
:iffullname (qaa0)
:ipaddr (192.168.2.1)
:netmask (255.255.255.0)
:ifname (qaa)
:ifnum (0)
:netaccess (Any
:color (Blue)
)
)
)
: (qaa2.fw
:color (firebrick)
:type (host)
:host_schemes_val (51)
:host_schemes_names (
: (SecurID)
: ("S/Key")
: (RADIUS)
: (Defender)
)
:comments ("Internet Interface")
:location (external)
:firewall (not-installed) *** <- Notice this...
:exportable (false)
:ipaddr (192.168.2.1)
:show_in_menus (true)
)
Now the object that had the firewall (installed) line is ahead of all other
ones..
save this new objects.C file.. DO NOT use the gui while you are doing this..
the type in 'fw load YOUR_RULEBASE_NAME_HERE.W'
Our rulebase is still the same old 'Standard', so we typed in 'fw load
Standard.W'
Hope this helps.
> -----Original Message-----
> From: Alan Steele [SMTP:alan.steele@dynegy.co.uk]
> Sent: Tuesday, August 31, 1999 9:03 AM
> To: fw-1-mailinglist@lists.us.checkpoint.com
> Subject: [FW1] SMTP & "mailbox unavailable"
>
>
> Hi,
>
> I'm having trouble with the SMTP Security Server not accepting mail for
> any
> users - "Mailbox Unavailable".
>
> Any suggestions gratefully received.
>
> Many thanks,
>
> Alan.
>
>
>
> ==========================================================================
> ======
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ==========================================================================
> ======
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic