Manualshelf

Troubleshooting guide

ManualsBrandsBay Networks ManualsComputer equipmentBayRS
131132133134135136137138139140
Chapter 11 Troubleshooting Licensing Resolving Common Licensing Problems
Advanced Technical Reference Guide 4.1 June 2000 126
Error: "only ### internal hosts allowed"
This warning message can be ignored if it
Appears only when fwd is started
Is not followed by a list of IP addresses
Causes no problem in the operation of VPN-1/FireWall-1 operation, and
Specifies the true number of hosts allowed
If you get a list of so-called 'internal' IP addresses detected, check if they are all internal, or whether some of
them are external. If they are all internal, upgrade to a bigger product. If some are external, make sure your
conf/external.if file includes the name of your external interface, as found in the output of
"ifconfig -a" (UNIX) or 'ipconfig /all'(NT).
If the list of IP addresses is not available, you can alternatively get the database/fwd.h file to a UNIX
machine, and issue the od -t u1 fwd.h command. You will get a list of numbers each between 0 and 255.
Each 4 consecutive numbers are an IP address. Alternatively, you can issue the fw lichosts command to
get a log of the internal hosts detected (note that this command may take some time to complete).
After the reason to the problem is found, you need to delete the database/fwd.h and
database/fwd.hosts file and restart the fwd. If the reason to the problem no longer exists (e.g. the
network previously had too many hosts, but now it no longer does) this would solve the problem.
On HP machines, the error message "only 25 internal hosts allowed" which appears after a boot can be ignored.
It is printed before the license is loaded into the kernel, and therefore it is not yet found in that stage.
For more information about exceeding the number of hosts for a license, see the SecureKnowledge Solution
(ID: 3.0.188485.2208447) in the Check Point Technical Services site.