KAWall works correctly, but then I try to open any page from Internet Explorer, the page isn’t loaded. Therefore if I try to do the same using Netscape, all is working…

 

 

This problem doesn’t concern the KAWall; it regards the HTTP security server. It seems that your server doesn’t support HTTP 1.1 and doesn’t open the pages.

 

Most sources recommend adding some code in $FWDIR/conf/objects.C file to resolve this problem, but it will not help.

 

There are two ways to resolve it. The first is to install SP5, if you are using the version 4.0. Or if it’s possible, you can install the version 4.1 with SP1 (also this problem exists in the version 4.1 build 41439).

 

The easiest decision – to configure Internet Explorer (the example – is for v. 5.x):

 

 

ENG: Tools-> Internet Options-> Advanced-> HTTP 1.1 Settings-> unmark the checkbox “Use HTTP 1.1”.

 

 

 

FireWall-1 logs always some authentication issue between the KAWALL and FireWall-1, how can I disable this message?

 

The problem is that the firewall modules expects by default an authentication from the CVP server, therefore you have to modify a file called $FWDIR/conf/fwopsec.conf on the firewall module. Delete the following line.

 

server <IP address> 18181 AUTH_OPSEC

 

Reboot the firewall (I guess an bounce would do the job).

 

When I download a large file, the transfer is quite slow and after about 50% it just rushes through, why that?

 

First of all we need to explain the KAWall’s working principle.

 

 

  1. When the user downloads the file, the data frames are transferred from FireWall Check Point to it’s CVP server (KAWall) and then – from CVP server to the user. This double transfer explains the decreasing of the transfer’s speed

 

  1. KAWall holds some part of the data frames during transferring and gives back the other part to FireWall. If the virus will be found in the hold part, the file’s transfer will be interrupted.

 

The compromise between the security and user’s convenience is defined by the data’s percent that is holded by CVP Server. This option is configured in the KAWall:

 

 

Parameters-> HTTP (SMTP/FTP)-> Options-> Hold-> Percent

Or in the configuration file kawall.cfg (holdfilePER=)

After KAWall installation the letters arrive without attachments – attachments are cut. How can I fix it?

 

To resolve the problem you should do the following:

 

In the Firewall’s configuration (SMTP Definition), in Action2 tab empty the field “Strip MIME of type” (as default there is a line “message/partial” there – delete it).

 

 

This point is described in the user manual for KAWall, but let’s repeat it.

 

If any problem with data routing is appear, to check if it’s according to KAWall you can do the following:

 

  1. In the “Manage” menu of Firewall chose the “Resources”.
  2. In the window “Resources” chose the window of the proper protocol’s (that is the problem with) configuration and open it in the Edit Mode.
  3. In this window, in CVP frame murk “None” instead of “Read Only” or “Read/Write”.

 

If the problem will remain – it doesn’t concern the KAWall settings. If the problem will disappear – yes, it depends on KAWall settings…

 

 

 

 

 

 

 

If all advices from this FAQ do not help to resolve your problem, please contact our support service: support@kaspersky.com

 

 

Please point out the following information on the problem:

 

  1. Firewall Check Point version and build
  2. What Service Packs for the Firewall are installed
  3. How many workstations are working through the Firewall
  4. KAWall version