Problem about CheckPoint 4.1
Posted on 2006-06-21
Recently, I need to add a router in our system. Thus the following changes are required.
Old Configuration: hme0: IP - 10.12.2.10, netmask - 255.255.255.252,
hme1: IP - 10.12.4.126, netmask - 255.255.255.128
Old Path: public network --> CheckPoint FW 4.1 --> local network
New Configuration: hme0: IP - 10.12.2.10, netmask - 255.255.255.252,
hme1: IP - 10.12.4.253, netmask - 255.255.255.192
New Path: public network--> CheckPoint FW 4.1 --> 3Com Netbuilder II router --> our computer control system
/etc/hosts & /etc/netmasks files to change the IP adress.
the corresponding network objects. The file under /var/opt/CPfw1-41/database/objects.C has been updated.
However, after implementing the mentioned changes, in checking the FW log, the are many messages rejected as rule 0.
Action -- Reject
Service -- 6218/6200
Protocol -- TCP
Rule -- 0
S_Port -- >1024
Info -- SYNDefender Warning: SYN --> SYN-Ack --> Time out
As my current license key was registered last year with IP 10.12.2.10 (this IP will not be changed), I think I don't need to re-install the license key again. Am I right? Do I need to install the license key again?
Do you know the cause of the message being rejected? Is there any special setting required if the FW is being connected to a 3Com Netbuilder II router directly?
Please advise. Thanks a lot.