NGX R65 Release Notes - Check Point

More documents

Recommendations

Info

SmartCenter Server Logging 26. When a Log Server is installed on a DAIP module, management operations such as "purge" and "log switch" can not be performed. 27. If using the cyclic logging feature, after upgrade it is recommended to back up the previous /log files to another machine, and then to delete them. 28. When a Log Server runs out of disk space, any logs sent by ELA clients will be lost. To prevent this, be sure to maintain adequate disk space on the Log Server. 29. After upgrading a gateway, SmartView Tracker may report 0 active connections. To resolve this issue, reinstall policy on the gateway. 30. When a filter is applied in the Traffic or Audit log pages, logs may not display in sequential order, and using the scroll bar arrow to navigate through the logs does not appear to work. To scroll, click and drag the scroll bar or use the buttons Bottom and Top. SmartCenter High Availability 31. If a primary SmartCenter server is in a Standalone configuration, and a secondary SmartCenter server is active, then policy installation from the secondary to the primary server will be prohibited immediately after upgrade. In order to resolve this, install the policy locally on the primary server. 32. When modifying the file InternalCA.C, be sure to copy the modified file to the other management stations, and then install policy again for the changes to become active. 33. When executing Management High Availability (between SmartCenter and/or CMA and/or MDS) change over may not succeed when SmartPortal is connected in Read/Write mode. To resolve this issue, restrict access from SmartPortal to Read-only administrators; or, use SmartView Monitor to disconnect the Read/Write mode in SmartPortal. SmartDirectory 34. If Use SmartDirectory (LDAP) is checked in Global Properties, but no LDAP account unit is configured, the authentication of external users (as opposed to LDAP users) that are not defined in the user's database will not succeed. To resolve this issue, make sure that you uncheck Use SmartDirectory (LDAP) in the Global Properties. User Management 35. When manually defining branches on an Account Unit, spaces between elements in the branch definition will not work. For example: A good branch: ou=Finance,o=ABC,c=us A bad branch: ou=Finance , o=ABC , c=us Trust Establishment 36. Before establishing secure internal communication (SIC) between a standalone SmartCenter server and a Connectra device, install policy to the SmartCenter server. OSE 37. The Drop action is not supported for Cisco OSE devices. If the Drop action is used, the policy installation operation fails. 38. 3Com devices are not supported. VPN-1/FireWall-1 NGX R65 Known Limitations Supplement. Last Update — February 4, 2008 5:37 pm 34
SmartPortal Platform Specific - Nokia 39. When upgrading using the Import Configuration option in the wrapper, and the machine you have exported the configuration from is a Nokia platform the following may occur: • Check Point packages that were inactive on the production machine will either become active on the target machine if its OS is Nokia, or will be installed on other platforms. If this should occur, when the target machine is a Nokia platform, return the relevant packages to the inactive state. For other platforms, uninstall the relevant packages. Platform Specific - Windows 40. On Windows platforms only, in some cases, when performing the Restore Version operation (from SmartDashboard, File > Database Revision Control > Restore Version) while SmartView Tracker is open, the restore fails and you are not able to save the database (File > Save). The solution is to make sure that SmartView Tracker is closed before performing Restore Version operations. If you already encountered such a problem, run cpstop and then cpstart. 41. After using the Advanced Upgrade tools to migrate a SmartCenter server to a different machine, RADIUS authentication servers will no longer be able connect to the SmartCenter server. To re-establish connection between them, do the following on the SmartCenter server: 1. Use Regedit to open the Windows registry. 2. Locate the key HKEY_LOCAL_MACHINE\SOFTWARE\SDTI\ACECLIENT. 3. Delete the value NodeSecret. 4. Reboot the SmartCenter server. SmartPortal 1. When a filter is applied in the Traffic or Audit log pages, logs may not display in sequential order, and using the scroll bar arrow to navigate through the logs does not appear to work. To scroll, click and drag the scroll bar or use the buttons Bottom and Top. VPN-1/FireWall-1 NGX R65 Known Limitations Supplement. Last Update — February 4, 2008 5:37 pm 35
Page 1 and 2: Check Point NGX R65 Known Limitatio
Page 3 and 4: ClusterXL ClusterXL In This Section
Page 5 and 6: ClusterXL 2. Performing an SNMP que
Page 7 and 8: ClusterXL Platform Specific — Sol
Page 9 and 10: ClusterXL 39. The following Web Int
Page 11 and 12: Endpoint Security Endpoint Security
Page 13 and 14: Endpoint Security 18. Endpoint Secu
Page 15 and 16: Eventia Suite 15. To upgrade a dist
Page 17 and 18: Firewall 5. The name of the install
Page 19 and 20: Firewall 31. In a cluster environme
Page 21 and 22: Firewall SecureClient 56. Policy in
Page 23 and 24: Provider-1/SiteManager-1 3. After u
Page 25 and 26: Provider-1/SiteManager-1 In additio
Page 27 and 28: Provider-1/SiteManager-1 SmartUpdat
Page 29 and 30: SecureXL SecureXL In This Section G
Page 31 and 32: SmartCenter Server SmartCenter Serv
Page 33: SmartCenter Server Policy Installat
Page 37 and 38: SmartUpdate Miscellaneous 11. When
Page 39 and 40: VPN VPN VPN Communities 1. When man
Page 41 and 42: VPN-1 Power VSX 27. When connecting

NGX R65 Release Notes - Check Point

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?