The PhoneBoy Blog


Simplifying Telecom, Mobile Phones, Gadgets, and More!

FireWall-1 FAQ: Warning: Modify for a new entry

Please note: This content was from when I was operating my FireWall-1 FAQ site, which I stopped operating in August 2005. For some reason people still have links to this stuff on the Internet that people are still clicking on.


I am making this information available again AS IS. Given how old this information is, it is likely wildly inaccurate. I have no plans to update this information.


If you're still running versions of Check Point VPN-1/FireWall-1 where this information is still relevant to you, do yourself a favor and upgrade to a more recent release. If you happen to be running a current release and the information is useful, it's by happenstance :)


FireWall-1 is letting you know it is being asked to "modify" a table entry that does not exist. This is a harmless error and can be safely ignored. You can disable these messages as follows:

IPSO (Nokia/VPN-1 Appliance)

You need modzap from Nokia Knowledge Base Resolution 1261. Then you can execute the following command and reboot your Nokia Application Platform:

`modzap _fw_modify_verify $FWDIR/boot/modules/fwmod.o 0x0`

Solaris

Add the following to /etc/system and reboot:

`set fw:fw_modify_verify 0x0`

HP/UX 9.x

Execute the following command and reboot the gateway:

`echo "fw_modify_verify?W0" | adb -w /hp-ux`

HP/UX 10 and 11

Execute the following command and reboot the gateway:

`echo "fw_modify_verify?W0" | adb -w /stand/vmunix`

AIX

Execute the following commands:

`fwstop`
`echo "fw_modify_verify/W 0" | adb -w $FWDIR/boot/modules/fwmod.4.x.o`
`fwstart

NT

Check Point has not yet provided information on how to do this on NT.

C-List #Cybersecurity Celebrity, Podcaster, #noagenda Producer, Frequenter of shiny metal tubes, Expressor of personal opinions, and of course, a coffee achiever.