Dropping encrypted connection between remote & mgmt console

[dmc]

Using SKey encryption between remote modules and centralized mgmt console. I'm able to push policies out to remote but logging functions have died due to encryption problem. Any know problems regarding the sKey option? Alternative solutions??

 

[deh]

first of all, make sure that you have the following configuration files in place.<br>on the firewall module machine: <br>$FWDIR/conf/masters - should contain the ipaddress of the management station.<br>on the management station:<br>&nbsp;$FWDIR/conf/clients with the fw-module ipaddress.<br><br>on <A HREF="

http://www.phoneboy.com"

TARGET="_new">

http://www.phoneboy.com</A>

i picked the following faq, which describes how you could <br>force the two modules to use S/Key.<br><br>try it, you have nothing to loose, good luck <br>-------------------------------------------------------------------------------------------------------<br><br>1.Make a backup of $FWDIR/lib/control.map <br>2.Change all occurances of fwa1 in control.map to skey (If 3.0 or later, you can also use fwn1) <br>3.fwstop ; fwstart <br><br>In FireWall-1 4.0, there is a NON-ENCRYPTED line you can edit instead of changing all occurances of fwa1 to skey. On your<br>management console, add all your firewall module IP addresses. On your firewall module, put the IP(s) of your management console. <br>