The PhoneBoy Blog

Simplifying Telecom, Mobile Phones, Gadgets, Health, and More!

FireWall-1 FAQ: Warning: Modify for a new entry

Please note: This content was from when I was operating my FireWall-1 FAQ site, which I stopped operating in August 2005. For some reason people still have links to this stuff on the Internet that people are still clicking on.

I am making this information available again AS IS. Given how old this information is, it is likely wildly inaccurate. I have no plans to update this information.

If you're still running versions of Check Point VPN-1/FireWall-1 where this information is still relevant to you, do yourself a favor and upgrade to a more recent release. If you happen to be running a current release and the information is useful, it's by happenstance :)

FireWall-1 is letting you know it is being asked to “modify” a table entry that does not exist. This is a harmless error and can be safely ignored. You can disable these messages as follows:

IPSO (Nokia/VPN-1 Appliance)

You need modzap from Nokia Knowledge Base Resolution 1261. Then you can execute the following command and reboot your Nokia Application Platform:
`modzap _fw_modify_verify $FWDIR/boot/modules/fwmod.o 0x0`


Add the following to /etc/system and reboot:

`set fw:fw_modify_verify 0x0`

HP/UX 9.x

Execute the following command and reboot the gateway:

`echo "fw_modify_verify?W0" | adb -w /hp-ux`

HP/UX 10 and 11

Execute the following command and reboot the gateway:

`echo "fw_modify_verify?W0" | adb -w /stand/vmunix`


Execute the following commands:

`echo "fw_modify_verify/W 0" | adb -w $FWDIR/boot/modules/fwmod.4.x.o`


Check Point has not yet provided information on how to do this on NT.

#Cybersecurity Evangelist, Podcaster, #noagenda Producer, Frequenter of shiny metal tubes, Expressor of personal opinions, and of course, a coffee achiever.