Anyone still using 4.1? I have set up a few VPNs between SecuRemote clients
and FW-1 v4.1. Client and server are configured to use IKE, SHA1, 3DES,
etc. The VPN are set up according to the book. I confirmed the
configuration in Phoneboy's old "Essential Check Point FW-1" book, too.
The VPNs get created: they exchange keys, authenticate properly, pass Phase
1 and 2, etc. The problem: the client end can't communicate with any nodes
in the encryption domain. Logs show any attempt, such as a PING or a TELNET
session being dropped by my last rule (any any drop).
My FW-1 Client Encrypt rule doesn't seem to be working. I am not using
Desktop Security and I do have my FW's object configured by the book and
"Exportable for SecuRemote."
Besides "Upgrade to NG," do you have any suggestions?
TIA and best regards,
Moss
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
