Hello Group,
"Happy Holidays!"
I have a problem with SecuRemote 4.1 to NG authentication on CP NG AI. I
can not get this to work. Is there anyone out there had success setting
this access up using a Radius server? If so, could you please send me
the instructions? I need a quick response on this matter if possible.
Thank you in advance,
Darrye L. Skinner
Lead Infrastructure Engineer
Information Services
ofc: 972.647.7018
fax:: 972.647.3716
dlskinner AT txi DOT com
-----Original Message-----
From: Rindee [mailto:rindee AT RINDEE DOT COM]
Sent: Thursday, November 20, 2003 2:32 PM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] CP NG AI Secure Remote Issue
I am having this exact same problem. I have been on the phone with
Checkpoint and we cannot figure it out. Any help is VERY appreciated.
-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of David
Walker
Sent: Thursday, November 20, 2003 12:27 PM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] CP NG AI Secure Remote Issue
Group,
I've installed Checkpoint NG with AI. It has a public IP address and it
is configured for Secure Remote access. When I connect to the it via
the Secure Remote for the first time, it prompts me for my
username/password, tells me I'm authenticated, displays the certificate,
and downloads the topology. When I try to access the 1 server within
the encryption domain, I receive ERROR: COMMUNICATION WITH GATEWAY
xxx.xxx.xxx.xxx HAS FAILED.
When I attempt to update the site within the Secure Remote program, I
recieve the same error. The logs show the initial logon and topology
download, but nothing else after that.
When doing a tcpdump on the external interface of the firewall, I see
the incoming and outgoing packets from/to Secure Remote client
initially, but again nothing after that. It's almost like the Secure
Remote client is preventing access.
If I stop Secure Remote on the laptop, I am able to TELNET to the
firewall.
I'm using a laptop with WinXP, latest Secure Remote NG with AI, I've
stop IPSEC services (Checkpoint recommendation). Have tried via dialup
and direct broadband.
Any suggestions?
David
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
