Firewall Wizards mailing list archives
Re: Scheduling PIX commands
From: "Ian Rarity" <Ian.Rarity () espc com>
Date: Wed, 06 Aug 2008 09:10:55 +0100
"Lord Sporkton" <lordsporkton () gmail com> 05/08/2008 03:19 >>>I know its a good idea to be with in reboot distance of a device if you are changing the configuration, but if all you are doing is clearing the xlate table, i dont see how that could go very wrong.
Neither did I, until the first time I tried it on our live system.
I could be wrong, but wouldnt 99% of your connections time out and clear from the xlate table within 24 hours anyway? If you have to
wait
till the middle of the night anyway, why not just let it ride
out?(not
sure if thats acceptable or not in your situation)
That would be the case for most normal apps, yes. However, the lumbering JBoss-based monstrosity that was my main concern for this job doesn't like it at all, and needs the actual application to be restarted before it'll start playing nice again. I ended up using a cronned expect script, for what it's worth. Ta, IR. ********************************* Ian Rarity Technical Engineer ESPC (UK) Ltd. T: (44)131 624 8000 F: (44)131 624 8509 http://www.espc.com ( http://www.espc.com/ ) ******************************************************************* Private and Confidential: This e-mail transmission is strictly confidential and intended solely for the addressee. It may contain privileged and confidential information and if you are not the intended recipient, you must not copy, disclose, distribute or take any action in reliance on it. If you have received this e-mail in error, please delete it and notify our E-mail Systems Administrator on +44 (0) 131 624 8000. ESPC (UK) Ltd does not accept any liability for any harm that may be caused to the recipient's system or data by this message or any attachment. ESPC (UK) Ltd is a company registered under the Companies Acts in Scotland (Registered Number SC203535), and having its registered office at 90A George Street, Edinburgh, Midlothian EH2 3DF. ESPC (UK) Limited is authorised and regulated by the Financial Services Authority. _______________________________________________ firewall-wizards mailing list firewall-wizards () listserv icsalabs com https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards
Current thread:
- Re: Scheduling PIX commands Christopher J. Wargaski (Aug 01)
- <Possible follow-ups>
- Re: Scheduling PIX commands Rohman, Mike (Chicago) (Aug 01)
- Re: Scheduling PIX commands Brian Ford (Aug 04)
- Re: Scheduling PIX commands Lord Sporkton (Aug 05)
- Re: Scheduling PIX commands Ian Rarity (Aug 06)
- Re: Scheduling PIX commands kevin horvath (Aug 06)
- Re: Scheduling PIX commands Lord Sporkton (Aug 05)
- Re: Scheduling PIX commands Brian Ford (Aug 06)