At 19:50 22.12.2004, you wrote:
Its enabled on the firewall and the client
what error-message do you see on the fireall?
what you can do:
sniffer your network traffic on the firewall to see if the client tries to
connect to the firewall
check if the IPs of your client behind the NAT-device are part of your
encryption domain. it's not the best idea to have the same IPs there.
enable VPN debugging on the module and see details there ... maybe this helps.
cheers
reinhard
Reinhard Stich <r.stich AT INTERNET-SECURITY DOT AT> wrote:At 16:36 22.12.2004,
you wrote:
>Hi,
>
>i have noticed that if i connect from behind the firewall using secure
>remote it fails to match proposal, however from ma dialup it works. The
>firewall is a Checkpoint firewall, and I can see te traffic passing through.
>
>Anyone any ideas what need to be configured,
>
> I have tried forcing NAT transal Tunnling (IKE over tcp and Force UDP
> encapsulation) this didnt work either.
is this enabled on your firewall? or do you only configure that on the client?
cheers
reinhard
>Ramakrishnan Pillai wrote:Did you check the
>user properties. It may be configured to do AES...RK
>
> >>> robshomemail AT YAHOO DOT COM 12/22/2004 7:57:38 AM >>>
>I have gone into the firewall object and under
>traditional mode made sure 3des is the only option
>ticked. I have also in global properties done the
>same ???
>
>I still get advised purposal fails in log viewer and
>it shows aes256 ?
>
>What is happening????
>
>
>
>--- Reinhard Stich
>wrote:
> > At 12:19 22.12.2004, you wrote:
> > >Hi,
> > >
> > >Does anyone know how to get the latest release of
> > >secure/remote to use 3des, it seems to default to
> > >AES256 .
> >
> > this is defined on your firewall ...
> >
> > cheers
> > reinhard
> >
> > >thanks
> > >
> > >
> > >
> > >
> > >
> >
> >___________________________________________________________
> > >ALL-NEW Yahoo! Messenger - all new features - even
> > more fun!
> > >http://uk.messenger.yahoo.com
> > >
> > >=================================================
> > >To set vacation, Out-Of-Office, or away messages,
> > >send an email to LISTSERV AT amadeus.us.checkpoint DOT com
> > >in the BODY of the email add:
> > >set fw-1-mailinglist nomail
> > >=================================================
> > >To unsubscribe from this mailing list,
> > >please see the instructions at
> > >http://www.checkpoint.com/services/mailing.html
> > >=================================================
> > >If you have any questions on how to change your
> > >subscription options, email
> > >fw-1-owner AT ts.checkpoint DOT com
> > >=================================================
> >
> > --
> > Reinhard Stich ASSIST R.Stich AT internet-security DOT at
> > Internet Security AG, 1150 Wien, Johnstrasse 29
> > Tel: +43 1 3709440 RS784-RIPE Fax: +43 1 3709440-333
> >
> > =================================================
> > To set vacation, Out-Of-Office, or away messages,
> > send an email to LISTSERV AT amadeus.us.checkpoint DOT com
> > in the BODY of the email add:
> > set fw-1-mailinglist nomail
> > =================================================
> > To unsubscribe from this mailing list,
> > please see the instructions at
> > http://www.checkpoint.com/services/mailing.html
> > =================================================
> > If you have any questions on how to change your
> > subscription options, email
> > fw-1-owner AT ts.checkpoint DOT com
> > =================================================
> >
>
>
>
>
>
>___________________________________________________________
>ALL-NEW Yahoo! Messenger - all new features - even more fun!
>http://uk.messenger.yahoo.com
>
>=================================================
>To set vacation, Out-Of-Office, or away messages,
>send an email to LISTSERV AT amadeus.us.checkpoint DOT com
>in the BODY of the email add:
>set fw-1-mailinglist nomail
>=================================================
>To unsubscribe from this mailing list,
>please see the instructions at
>http://www.checkpoint.com/services/mailing.html
>=================================================
>If you have any questions on how to change your
>subscription options, email
>fw-1-owner AT ts.checkpoint DOT com
>=================================================
>
>
>=================================================
>To set vacation, Out-Of-Office, or away messages,
>send an email to LISTSERV AT amadeus.us.checkpoint DOT com
>in the BODY of the email add:
>set fw-1-mailinglist nomail
>=================================================
>To unsubscribe from this mailing list,
>please see the instructions at
>http://www.checkpoint.com/services/mailing.html
>=================================================
>If you have any questions on how to change your
>subscription options, email
>fw-1-owner AT ts.checkpoint DOT com
>=================================================
>
>
>
>---------------------------------
> ALL-NEW Yahoo! Messenger - all new features - even more fun!
>
>=================================================
>To set vacation, Out-Of-Office, or away messages,
>send an email to LISTSERV AT amadeus.us.checkpoint DOT com
>in the BODY of the email add:
>set fw-1-mailinglist nomail
>=================================================
>To unsubscribe from this mailing list,
>please see the instructions at
>http://www.checkpoint.com/services/mailing.html
>=================================================
>If you have any questions on how to change your
>subscription options, email
>fw-1-owner AT ts.checkpoint DOT com
>=================================================
--
Reinhard Stich ASSIST R.Stich AT internet-security DOT at
Internet Security AG, 1150 Wien, Johnstrasse 29
Tel: +43 1 3709440 RS784-RIPE Fax: +43 1 3709440-333
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
---------------------------------
ALL-NEW Yahoo! Messenger - all new features - even more fun!
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
--
Reinhard Stich ASSIST R.Stich AT internet-security DOT at
Internet Security AG, 1150 Wien, Johnstrasse 29
Tel: +43 1 3709440 RS784-RIPE Fax: +43 1 3709440-333
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
