Re: [FW-1] Cisco VPN/CheckPoint FW

Subject:	Re: [FW-1] Cisco VPN/CheckPoint FW
From:	Joe Pope <POPEJ AT WESTAT DOT COM>
To:	FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date:	Tue, 18 Apr 2006 16:22:07 -0400

I had the same problem, here is how I solved it.  

Create the Service "CiscoVPN":
CiscoVPN = UDP, Port 4500, Accept Replies, Match for 'Any'

Then make an outbound and inbound rule:
Internal Client > Remote Cisco > Any Traffic > IKE,CiscoVPN,ESP > Accept
Remote Cisco > Internal Client > Any Traffic > IKE,CiscoVPN,ESP > Accept

(remember that the IKE service is the UDP one!)
A pain but it worked!



-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Chuck
Baur
Sent: Tuesday, April 18, 2006 3:44 PM
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: Re: [FW-1] Cisco VPN/CheckPoint FW


I recently been having a problem trying to use a Cisco VPN client behind
a Checkpoint firewall. I ensured that the access list will allow
outbound and even opened to firewall to allow anything going outbound
with no restrictions. I am using a hide address. Has anyone had issues
with attempting this? Is there any sort of work around if its checkpoint
related. Thank you for your time! 

 

Chuck Baur

Network Administrator 


-----Original Message-----
From: CHARLES BAUR 
Sent: Tuesday, April 18, 2006 2:17 PM
To: Subject: Cisco VPN/CheckPoint FW




=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

<Prev in Thread]	Current Thread	[Next in Thread>
Re: [FW-1] Cisco VPN/CheckPoint FW, Chuck Baur Re: [FW-1] Cisco VPN/CheckPoint FW, Jeremy Lieb Re: [FW-1] Cisco VPN/CheckPoint FW, Joe Pope <= Re: [FW-1] Cisco VPN/CheckPoint FW, Chuck Baur Re: [FW-1] Cisco VPN/CheckPoint FW, no-need to-list Re: [FW-1] Cisco VPN/CheckPoint FW, fwguru Re: [FW-1] Cisco VPN/CheckPoint FW, Ramki Security

Previous by Date:	Re: [FW-1] Cisco VPN/CheckPoint FW, Jeremy Lieb
Next by Date:	Re: [FW-1] ipassignment.conf, Lino Eduardo Avila Rodríguez
Previous by Thread:	Re: [FW-1] Cisco VPN/CheckPoint FW, Jeremy Lieb
Next by Thread:	Re: [FW-1] Cisco VPN/CheckPoint FW, Chuck Baur
Indexes:	[Date] [Thread] [Top] [All Lists]