Re: [FW-1] VPN/SecureRemote problem during key exchange

Subject:	Re: [FW-1] VPN/SecureRemote problem during key exchange
From:	Michael Halligan <Michael.Halligan AT MYPOINTS DOT COM>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Fri, 25 Jun 2004 13:03:12 -0700

Figured out the problem actually. We've got a HA setup with 2 firewalls,
and I was trying to authenticate to the secondary firewall.. I redid my
rules
To auth off of the cluster ip, and it works fine now.

Michael

-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Ray
Sent: Thursday, June 24, 2004 8:16 PM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] VPN/SecureRemote problem during key exchange

Check out sk23166. It says the VPN certificate on the firewall object is
corrupt. Is this affecting just one client or all of them? If all of
them,
this might be the answer.

Ray

>From: Michael Halligan <Michael.Halligan AT MYPOINTS DOT COM>
>Reply-To: Mailing list for discussion of Firewall-1
><FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>
>To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
>Subject: [FW-1] VPN/SecureRemote problem during key exchange
>Date: Thu, 24 Jun 2004 16:24:48 -0700
>
>I'm getting an odd error message during IKE key exchange when trying to
>do a client-site VPN.
>The error I'm getting is :
>Negotiation with gateway IP at site IP hast failed.
>Received notification: invalid cookie.
>I'm not finding information about this on cp's site or in any of the
>various manuals I have access to.
>Has anybody run into this before?
>
>
>On the client end I'm running SecuRemote R55
>On the server, R55 NG with AI

_________________________________________________________________
MSN Movies - Trailers, showtimes, DVD's, and the latest news from
Hollywood!
http://movies.msn.click-url.com/go/onm00200509ave/direct/01/

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] VPN/SecureRemote problem during key exchange, Michael Halligan Re: [FW-1] VPN/SecureRemote problem during key exchange, Ray Re: [FW-1] VPN/SecureRemote problem during key exchange, Michael Halligan <=

Previous by Date:	Re: [FW-1] VRRP problem, Robert Plaenk
Next by Date:	[FW-1] Lionel MOYAT/Helios/FR/EUROPE/GROUP est absent., lionel . moyat
Previous by Thread:	Re: [FW-1] VPN/SecureRemote problem during key exchange, Ray
Next by Thread:	[FW-1] Problems with SecureClient and Internet Explorer?, Michael Schwartzkopff
Indexes:	[Date] [Thread] [Top] [All Lists]