Firewall-1
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [FW-1] IKE IDs subnet ist wrong

from Miguel Angel Gutierrez [Permanent Link]
Subject: Re: [FW-1] IKE IDs subnet ist wrong
From: Miguel Angel Gutierrez <miguelangel AT TELVISTA.COM DOT MX>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date: Thu, 29 Dec 2005 13:42:04 -0800 
this worked for me once with a similar case.

under the properties of the interoperable device you may have (linux
firewall) defined as the remote peer; have you tried to disable the
-support key exchange for subnets- (VPN Advanced section)

good luck.


-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Peter
Haug
Sent: Thursday, December 29, 2005 1:26 PM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] IKE IDs subnet ist wrong

Hi,
our Firewall is a R60 on SCPLT.
we created a site to site VPN with linux Firewall. During IKE
negotiation,
I see the wrong subnet.
It  should be a 10.22.0.0/16 but it is 10.20.0.0/14

Our internal networks are 23 subnets from 10.1.0.0/16 to 10.23.0.0/16. I
cant finde any network wit the mask /14 in the smartdashboard. Also in
the
SCPLT I cant find it.
where else should I look for this?
any hints?
Thanks Peter


#####
Diese Email wurde durch verschiedene Security Mechanismen geprueft
und fuer sauber befunden.
Wenn Sie Interesse an diesen Security Checks haben,
nehmen Sie mit uns Kontakt auf. http://www.paninfo.com
#####

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [FW-1] IKE IDs subnet ist wrong, Peter Haug
Next by Date:  Re: [FW-1] Windows 2003, Charalambos Klitiropoulos
Previous by Thread:  [FW-1] IKE IDs subnet ist wrong, Peter Haug
Next by Thread:  [FW-1] NATting, ojbects and DMZ's, Erik Decker
Indexes:  [Date] [Thread] [Top] [All Lists]