Hi Gusy,
Any ide what could be the problem in this Site - Site VPN.
They are both being administered with a CMA inside of a Provider-1.
This is the LOG error I'm receiving.
Number: 951217
Date: 22May2004
Time: 1:26:59
Product: VPN-1 & FireWall-1
Interface: daemon
Origin: SharedMTY2 (222.22.22.222)
Type: Log
Action: Reject
Reject Reason: Gateway to Gateway authentication failure
Source: SharedMX2 (111.11.11.111)
Destination: SharedMTY2 (222.22.22.222)
Encryption Scheme: IKE
VPN Peer Gateway: SharedMX2 (111.11.11.11)
IKE Initiator Cookie: ef3fff78b56342eb
IKE Responder Cookie: e512995a63dc4433
Encryption Methods: 3DES + MD5, RSA signatures
Community: My_Firewall_Community
Information: IKE: Main Mode No valid CRL.
CN=SharedMX2 VPN Certificate,O=Shared..erbr63
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
