I ran into an issue where a Check Point R70.30 upgraded to R71 firewall was unable to authenticate against a Microsoft IAS RADIUS server. The authentication was failing both before and after the upgrade. More specifically, a VPN client trying to authenticate would fail, and the corresponding message logged by the firewall was “Client Encryption:…
Rocking Your “Show” Commands with Regex
Here’s a few show commands I put together that pipe to “include” or “exclude” and use regular expressions to give you just the output you’re looking for at the Cisco IOS CLI. show run | i ^interface|^_ip address ! Gives you the every line in your running config that starts with (that’s what the ^…
Bouncing Off The Firewall Rev Limiter: “The connection table may be at full capacity. Please increase the connection table limit.”
Today in Check Point adventure-land, I ran into a problem where legitimate traffic was sometimes making it through the firewall, and sometimes not. The log viewer (SmartView Tracker) was showing me where new connections were “accepted”. And then seconds later, traffic of the same class was “rejected”. I thought I was dealing with some sort…
Yep, It Really Came Down To Password Recovery
I spent 4 hours on the phone today with my new best friend in a data center far, far away, while I walked him through password recovery on several different devices. First up were a 2 sets of redundant Cisco PIXen running 7.0x code. That went pretty much without a hitch, although it’s a little…
Check Point SmartView Tracker Reports “Port command ended without a new line.” Causing FTP Server Connection Failure
I ran into a problem today where a user was having trouble accessing a remote FTP site through a Check Point firewall. After recreating the problem at my desk and further reviewing with tcpdump, I found that the initial 3-way handshake would complete, the first line of the 220 welcome message would come back from…
When Sup Engines Go Bad
I spent much of the first two weeks of my new job troubleshooting bad site to site VPN performance. Which wasn’t the real problem. I didn’t know for sure what the problem was after the firewall cut I was doing Saturday night didn’t help the issue. At the time, it seemed like the cut should…
Yes, That’s My Core. Why Do You Ask?
Welcome to the new theme for PACKETattack, all 3 of you that are going to read this, assuming this very first statement didn’t drive you away, cutting the hit counts down even more. WordPress is starting to put some nice themes out there for those too lazy and/or disinterested and/or cheap to host their site…
Firewall Cut: FAIL
Sans testing, I tried to cut from an R55 CheckPoint box to an R70.30 CheckPoint cluster. Went great, except that RADIUS xauth was not working for client VPN users. Something’s changed from R55 to R70 when talking to Microsoft IAS. Will have to research. The bigger disappointment was that the poorly performing site to site…
An Old Text File + Cisco 7 Save The Day
My predecessor left me a good bit of info about how to gain access permission to the network gear. Not enough, but it was a good start. Well, I ran into a route-switch module which I could not gain access to. User/pass would hang for several seconds before telling me I was wrong, oh so…
- « Previous Page
- 1
- …
- 9
- 10
- 11