Troubleshooting guide
29
Chapter 4: Troubleshooting Routers and Embedded
Systems
In This Chapter
Introduction ......................................................................................................................................................30
Management Server Architecture...................................................................................................................30
VPN-1/FireWall-1 configuration for a Nortel (Bay Networks) BayRS router ..............................................31
Functions supported in VPN-1/FireWall-1 on Nortel routers..........................................................................31
Common problems resolution.........................................................................................................................31
What happens when applying the Gateway rule to Interface and the direction set to “Eitherbound”.........31
Problem which the time in log entries is different to the time on the router and the Management module.
....................................................................................................................................................................31
Problem which the $FWDIR/log/fw.log file is growing out of proportion when using
VPN-1/FireWall-1management module......................................................................................................31
Problem which the remote Firewall is not dynamically downloading the correct policy .............................31
Problem, which the management module doesn’t get, logs from routers, few possible causes and
resolution. ...................................................................................................................................................31
Problem which after installing policy, the system status will display HELP on a Nortel (Bay) Router........31
Does SynDefenser work on Nortel (Bay) router? .......................................................................................32
To configure a Nortel router with VPN-1/FireWall-1.......................................................................................32
Controlling the FireWall ..................................................................................................................................32
Licenses..........................................................................................................................................................33
Problems and bugs.........................................................................................................................................33
To configure an SNMP password on a Nortel (Bay) Router ..........................................................................33
Further security considerations...................................................................................................................34
BayRS Router Commands .............................................................................................................................34
Router Log Command:................................................................................................................................34
Router Status Commands ..........................................................................................................................34
Router Kernel Information Commands .......................................................................................................34
VPN-1/FireWall-1 Commands: ...................................................................................................................35
General Commands....................................................................................................................................35
Main Bay Command Console (BCC) Commands ......................................................................................35
How to configure VPN-1/FireWall-1 using BCC..........................................................................................35
Debugging Nortel (Bay) Routers ....................................................................................................................36
General problems .......................................................................................................................................36
When the connection timed out while trying to install policy.......................................................................37
VPN-1/FireWall-1 configuration for a Xylan switch ......................................................................................38
Functions supported in VPN-1/FireWall-1 on Xylan Switch ...........................................................................38
Common problems resolution.........................................................................................................................38
Problem which the remote Firewall is not dynamically downloading the correct policy .............................38
Problem, which the management module doesn’t get, logs from routers, few possible causes and
resolution. ...................................................................................................................................................38
Problem which you can’t load policy into xylan module and you receive an “unauthorized action” error
message. ....................................................................................................................................................38
Debugging Routers and Embedded systems ...............................................................................................39
Information to Gather......................................................................................................................................39
BAY Router .................................................................................................................................................39
Xylan ...........................................................................................................................................................39
More Information..............................................................................................................................................40