Agreed w/ Jean. This is basics of VPN tunnel setup.
That is called an "encryption domain" and you need to define one. It is
usually a network object or group in FW-1. Then apply it to the peer device
(interoperable device.)
Regards,
Matt Goddard
|---------+-------------------------------------------->
| | Jean-Francois Gobin |
| | <gobin AT GOBINJF DOT BE> |
| | Sent by: Mailing list for |
| | discussion of Firewall-1 |
| | <FW-1-MAILINGLIST AT AMADEUS.US DOT CHEC|
| | KPOINT.COM> |
| | |
| | |
| | 09/28/2004 05:55 AM |
| | Please respond to Mailing list |
| | for discussion of Firewall-1 |
| | |
|---------+-------------------------------------------->
>----------------------------------------------------------------------------------------------|
|
|
| To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
|
| cc:
|
| Subject: Re: [FW-1] VPN community -> domain? Network?
|
>----------------------------------------------------------------------------------------------|
It's the set of IP networks/addresses the firewall announces to the peer
as being reachable through it.
Are you sure you don't need a little reading prior to post here ?
Jean-Francois Gobin
On Tue, 28 Sep 2004, Chanoine wrote:
> Hello!
> I am building a VPN community with checkpoint NG r55 and interoperable
> devices.
> I created a community named TEST_VPN with all my distant devices and my
> checkpoint as particpating gateways.
>
> When I validate my modifications it says that my gateways doesn't have a
> domain specified. Actually when I point my mouse on an interoperable
> device it says "domain : ?".
> What does this mean?
>
> Moreover I created network objects corresponding to my distant networks.
> In my interoperable devices, shall I declare in the topology tab my
> distant network or must I leave this tab empty?
>
> Thanks for any help.
>
> Yannick
>
> =================================================
> To set vacation, Out-Of-Office, or away messages,
> send an email to LISTSERV AT amadeus.us.checkpoint DOT com
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> fw-1-owner AT ts.checkpoint DOT com
> =================================================
>
----------
Jean-Francois Gobin - Administrateur gobinjf.be
http://www.gobinjf.be mailto:gobin AT gobinjf DOT be
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
