Firewall-1
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [FW-1] VPN Question

from Edouard Zorrilla [Permanent Link]
Subject: Re: [FW-1] VPN Question
From: Edouard Zorrilla <ezorrilla AT TSF.COM DOT PE>
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Date: Fri, 15 Dec 2006 07:27:31 -0500 
Thaks  a lot for your repply.

MyHost(SiteC) --- EncriptedTrafficIPSec --- SiteA

MyHost(SiteC) --- ClearTextIP --- SiteB
The SiteB does not belong to any other Community, even though when I try to send traffic to SiteB I got a error that says: "Packet droped since there is no valid SA". The issue is that I have set the source MyHost inside in my VPN Domain manually defined, and for that reason It seems that the Firewall Checkpoint wants to send traffic encripted even to SiteB.
I have tried even to include the service to SiteB as a excluded service inside the community that makes the VPN to SiteA, and still I am getting the same error. I will appreciate your help in advance, 

Best Regards
----- Original Message ----- From: "Christian ALT" <calt AT TLA DOT CH> 
To: <FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM>
Sent: Friday, December 15, 2006 12:57 AM
Subject: Re: [FW-1] VPN Question



This is possible. Is site B part of any VPN?

Did I understand right that your host is in site C.

If you want a refined answer please detail your configuration.


Christian ALT

Telecom and Logistics Associates
Network Security Company
Security Lead Auditor for ISO 27001
http://www.tla.ch
Agenda Romand de la formation IT et Securité
http://www.tla.ch/agenda.htm



-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM] On Behalf Of Edouard
Zorrilla
Sent: vendredi, 15. décembre 2006 02:26
To: FW-1-MAILINGLIST AT AMADEUS.US.CHECKPOINT DOT COM
Subject: [FW-1] VPN Question

Hi People,

I have a host behing a Nokia cluster NGX. I am trying to make a VPN tunnel
so that the same host send IPSec traffic to site A and clear text to Site B. 
Is that possible in checkpoint ? I have working with other devices but in
checkpoint it simply does not work. When I set the tunnel it send all
traffic encrypted even to site B.

Can anyone help me how to set it ? I will really appreciate,

Regards

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================

=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================




=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [FW-1] SV: [FW-1] Eventia Reporter installation, Torkel Mathisen
Next by Date:  Re: [FW-1] SV: [FW-1] Eventia Reporter installation, Liu, David
Previous by Thread:  Re: [FW-1] VPN Question, Christian ALT
Next by Thread:  Re: [FW-1] VPN Question, Gary Scott
Indexes:  [Date] [Thread] [Top] [All Lists]