NGX R65 Release Notes - Check Point
NGX R65 Release Notes - Check Point
NGX R65 Release Notes - Check Point
You also want an ePaper? Increase the reach of your titles
YUMPU automatically turns print PDFs into web optimized ePapers that Google loves.
SmartCenter Server<br />
Logging<br />
26. When a Log Server is installed on a DAIP module, management operations such as "purge" and<br />
"log switch" can not be performed.<br />
27. If using the cyclic logging feature, after upgrade it is recommended to back up the previous<br />
/log files to another machine, and then to delete them.<br />
28. When a Log Server runs out of disk space, any logs sent by ELA clients will be lost. To prevent<br />
this, be sure to maintain adequate disk space on the Log Server.<br />
29. After upgrading a gateway, SmartView Tracker may report 0 active connections. To resolve this<br />
issue, reinstall policy on the gateway.<br />
30. When a filter is applied in the Traffic or Audit log pages, logs may not display in sequential<br />
order, and using the scroll bar arrow to navigate through the logs does not appear to work. To<br />
scroll, click and drag the scroll bar or use the buttons Bottom and Top.<br />
SmartCenter High Availability<br />
31. If a primary SmartCenter server is in a Standalone configuration, and a secondary SmartCenter<br />
server is active, then policy installation from the secondary to the primary server will be<br />
prohibited immediately after upgrade. In order to resolve this, install the policy locally on the<br />
primary server.<br />
32. When modifying the file InternalCA.C, be sure to copy the modified file to the other<br />
management stations, and then install policy again for the changes to become active.<br />
33. When executing Management High Availability (between SmartCenter and/or CMA and/or MDS)<br />
change over may not succeed when SmartPortal is connected in Read/Write mode. To resolve<br />
this issue, restrict access from SmartPortal to Read-only administrators; or, use SmartView<br />
Monitor to disconnect the Read/Write mode in SmartPortal.<br />
SmartDirectory<br />
34. If Use SmartDirectory (LDAP) is checked in Global Properties, but no LDAP account unit is<br />
configured, the authentication of external users (as opposed to LDAP users) that are not<br />
defined in the user's database will not succeed. To resolve this issue, make sure that you<br />
uncheck Use SmartDirectory (LDAP) in the Global Properties.<br />
User Management<br />
35. When manually defining branches on an Account Unit, spaces between elements in the branch<br />
definition will not work. For example:<br />
A good branch: ou=Finance,o=ABC,c=us<br />
A bad branch: ou=Finance , o=ABC , c=us<br />
Trust Establishment<br />
36. Before establishing secure internal communication (SIC) between a standalone SmartCenter<br />
server and a Connectra device, install policy to the SmartCenter server.<br />
OSE<br />
37. The Drop action is not supported for Cisco OSE devices. If the Drop action is used, the policy<br />
installation operation fails.<br />
38. 3Com devices are not supported.<br />
VPN-1/FireWall-1 <strong>NGX</strong> <strong>R65</strong> Known Limitations Supplement. Last Update — February 4, 2008 5:37 pm 34