2005/01/15 10:32:34

OT: Netscreen firewalls and DCOM


if you have any remote HC like DNS or Mail which need DCOM, and there is a Netscreen firewall between HC primary and secondary - be careful to upgrade Netscreen ScreenOS to 5.1 or higher because even with the proper policy DCOM will no longer work.

The workaround for us is to remove alg for msrpc and that will work:

unset alg msrpc

Just wanted to pass this info in case anyone else has same issue.


Comments are closed.