[FW-1] VPN problem

Subject:	[FW-1] VPN problem
From:	Rajesh <rajeshb AT FRONTLINE.COM DOT AU>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Sat, 29 Jan 2005 09:41:26 +1100

Hi all,

I have configured VPN on checkpoint firewall NG AI (55) for remote users.
It's working fine for one of our internal networks. But not for all the
Networks.


Our network diagram:


MELB OFFICE(192.168.6.0)-->(192.168.6.254)MELB ROUTER(10.1.1.4)-->
(10.1.1.1)SYD ROUTER(192.168.1.254)-->(192.168.1.1)FIREWALL-->

ifconfig -a

lo0: flags=1000849<UP,LOOPBACK,RUNNING,MULTICAST,IPv4> mtu 8232 index 1
        inet 127.0.0.1 netmask ff000000
hme0: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 2
        inet 210.89.x.x netmask fffffff0 broadcast 210.89.x.x
        ether 8:0:20:d9:ee:e2
hme1: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 3
        inet 192.168.1.1 netmask ffffff00 broadcast 192.168.1.255
        ether 8:0:20:d9:ee:e3
hme2: flags=1000843<UP,BROADCAST,RUNNING,MULTICAST,IPv4> mtu 1500 index 4
        inet 192.168.2.1 netmask ffffff00 broadcast 192.168.2.255
        ether 8:0:20:f1:9c:66


I've included 192.168.1.0, 192.168.6.0 and 192.168.2.0 networks in the VPN
domain. But I can only access 192.168.1.0 netowrk. I can't access
192.168.2.0 or 192.168.6.0 networks. One of the firewall interfaces is
192.168.2.1. I can't ping that IP. What could be the problem?

Netstat -rn output:


Routing Table: IPv4
  Destination           Gateway           Flags  Ref   Use   Interface
-------------------- -------------------- ----- ----- ------ ---------
210.89.x.x                 210.89.x.x           U         1 108120  hme0
192.168.1.0          192.168.1.1          U         1 137360  hme1
192.168.2.0          192.168.2.1          U         1  34762  hme2
192.168.6.0          192.168.1.254        UG        1    344
224.0.0.0            210.89.x.x           U         1      0  hme0
default              210.89.x.x           UG        11142128
127.0.0.1            127.0.0.1            UH       422775800  lo0

Thanks for your help.

Regards,
Rajesh.

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] Checkpoint Hardening Guard on Win2k, Brandon Liew [FW-1] Checkpoint 4.1 any build, Robert Fowler Re: [FW-1] Checkpoint 4.1 any build, Neil Kemp Re: [FW-1] Checkpoint 4.1 any build, Rick Centner [FW-1] VPN problem, Rajesh <= Re: [FW-1] Checkpoint 4.1 any build, Robert Fowler Re: [FW-1] Checkpoint Hardening Guard on Win2k, Zeltser, Roman

Previous by Date:	Re: [FW-1] Routing a single public IP to multiple servers using subdomains, Cecoban, S. A. de C. V. - Romey Valadez
Next by Date:	Re: [FW-1] SmartDefense, Tom Stala
Previous by Thread:	Re: [FW-1] Checkpoint 4.1 any build, Rick Centner
Next by Thread:	Re: [FW-1] Checkpoint 4.1 any build, Robert Fowler
Indexes:	[Date] [Thread] [Top] [All Lists]