> > This is a repeat of a question I posted several weeks ago, but I
> > have had no satisfactory response from the forum or Checkpoint.
> > I cannot believe Checkpoint does not support FTP from a browser
> > has anyone got this working throught the AFTPD, this is really
> > a stupid ommission, our users are asking "Why are we using FW-1"
> > if it doesn't support WWW browsers correctly, surely this must
> > be relatively simple change/upgrade for checkpoint to allow.???
> Dave, et. al. -
> There is a software anomaly in the aftp daemon which causes ftp
> transfers to behave erratically - terminate abruptly, terminate
> as if successful after transferring one packet, and so on.
> This is scheduled to be resolved in Checkpoint's release 2.0E,
> due at some date in the near future. I do not know why you have
> had no satisfactory response from Checkpoint - this has been an
> issue for 6 weeks or so, but I apologize.
This type of problem is going to be present in FW-1 until Checkpoint
realise that SMLI doesn't work unless you recreate all the layers
(which they don't appear to be doing). i.e. they have to almost create
a proxy before they can provide transparent proxying that is as reliable
and useful as what you'll get in a product such as Gauntlet for services
such as FTP.
The "anomaly" in aftp is not that. It is just something which highlights
the weaknesses in SMLI as currently used in FW-1.