[FW-1] AW: [FW-1] VPN client to firewall connection fails

Subject:	[FW-1] AW: [FW-1] VPN client to firewall connection fails
From:	"Lachmann, Tobias, PRE" <Tobias.Lachmann AT PREMIERE DOT DE>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Wed, 23 Feb 2005 09:56:43 +0100

Hello Joe!

Can you give us more information about the complete setup?
What certificates do you use? Where do they come from?

The message: "Cannot construct a valid certificate chain from peer certificates"
indicates, that the two certificates are not signed by the same (internal)-ca
or that the certificates can't be validated by the participating partners in 
the vpn.

Regards,

Tobias

-----Ursprüngliche Nachricht-----
Von: Mailing list for discussion of Firewall-1 [mailto:FW-1-MAILINGLIST AT 
AMADEUS.US.CHECKPOINT DOT COM] Im Auftrag von Joe Clifton
Gesendet: Dienstag, 22. Februar 2005 17:37
An: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Betreff: [FW-1] VPN client to firewall connection fails

Below is the error I am getting...this is a new install.  Maybe I should
re-create the CA??



>Checking network connectivity...
>Preparing connection...
>Connecting to gateway...
>Could not validate the certificate used by gateway FWKRE1F at site TU.
>Cannot construct a valid certificate chain from peer certificates
>IKE negotiation failed
>Connection failed

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
[FW-1] AW: [FW-1] VPN client to firewall connection fails, Lachmann, Tobias, PRE <= Re: [FW-1] AW: [FW-1] VPN client to firewall connection fails, Joe Clifton [FW-1] AW: [FW-1] VPN client to firewall connection fails, Lachmann, Tobias, PRE

Previous by Date:	Re: [FW-1] CheckPoint and TrendMicro, Serwatko Pawel
Next by Date:	[FW-1] Betreff: Re: [FW-1] CheckPoint and TrendMicro, Marco Rubeck
Previous by Thread:	[FW-1] sending alerts to firewall admin mailbox, Naseer Inamdar
Next by Thread:	Re: [FW-1] AW: [FW-1] VPN client to firewall connection fails, Joe Clifton
Indexes:	[Date] [Thread] [Top] [All Lists]