This is because the order of the rules, try to put the encryptions
rules before the Security Rules on both sides, but be careful with that.
Regards!
Alejandro Flores Mendoza
C I T I
Sendero Sur # 285 Col. Contry
Monterrey Nuevo Leon, Mexico
CP 64860
Tel. 82893200 ext. 147
email: alejandro.flores AT citi.com DOT mx
FAX: 82893201
" Este mensaje puede contener información confidencial o propietaria y esta dirigido
sólo para la persona o entidad a quien originalmente fue remitido.
El contenido de este mensaje puede expresar opiniones y puntos de vista privados y no
constituyen una divulgación o compromiso formal por parte de CITI a menos que se exprese
específicamente."
Bushan Korgaonkar wrote:
Hello Gurus
I am setting up a S2S VPN with one of my customer having Checkpoint NG R55
My end box is a Nokia with checkpoint NG R54.
My side i am creating the VPN in Traditional mode whereas the customer is
creating in Simplified Mode
Firewall on the remote end is genrating the following log
LogViewer message: Encryption failure: Received a cleartext packet received
within an encrypted connection
My firewall is generating the following log
IKE: Phase1 Received Notification from Peer: authentication failed
We are unable to setup the tunnel.
Please some one help me for clearing some doubts
1) Can a S2S tunnel be created in Simplified VPN Mode with an externally
managed F/W
2) if yes do we to add the VPN _cummity in the VPN coloum
Please add any more outputs on the same.
Also any document on the same will be helpfull
Regards
Arun k
--
India.com free e-mail - www.india.com.
Check out our value-added Premium features, such as an extra 20MB for mail
storage, POP3, e-mail forwarding, and ads-free mailboxes!
Powered by Outblaze
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
