On 9/24/06, cisco4ng <cisco4ng AT yahoo DOT com> wrote:
With VPN "traditional" mode, the Checkpoint FW itself, by
default, is NOT part of encryption domain but in
simplified mode, it is. Is there a way to exclude the
Checkpoint itself from the encryption domain in NGx in
VPN "simplified" mode?
This is the defaults, as you said. But you can as well specify the
encryption domain
manually on the topology tab and specify whatever you want as encryption domain
there, including just the network objects you need...
Are you doing it this way (manually specified) and doesn't work, or
are you leaving
the defaults so the encryption domain is calculated based on the topology?
- Martín.
--
**** ¿Hoy qué haz hecho para ahorrar agua? - What have you done today
to save water? - O que você têm feito hoje para conservar a água?
** Mi página web: http://gama.fime.uanl.mx/~mhoz/
* "Somos consecuencia del pasado, y causa de nuestro futuro."
** My Linux - http://www.slackware.com == My BSD - http://www.openbsd.org
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
