I'm tryuing to define site-to-site vpn in between 2 Checkpoint NG FP3 boxes.
A couple of genereal questions......
1. Is it possible to have a site-to-site VPN based only on gateway
certificated without sefining a preshared secret?
2. First gateway has public IP as primary, second has private IP as
primary, VPN connection should g over the private leased line. When I
create encrypt rule ther is no traffic asppearing on the firewall that
hits that rule, tcpdump on Nokia shows no traffic at all, the moment I
disabel that rule and allow cleartext communications everything works fine.
Could it be the problem that one gateway has public IP as primary ans
second has private as primary?
Thanks.
--
Your favorite stores, helpful shopping tools and great gift ideas.
Experience the convenience of buying online with Shop@Netscape!
http://shopnow.netscape.com/
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
