--- Begin Message ---
- To: "FW-1 List (E-mail)" <[email protected]>
- Subject: RE: [FW1] SR over @HOME connection (See Notice Below)
- From: Andy David <[email protected]>
- Date: Thu, 2 Nov 2000 12:21:24 -0800
Title: RE: [FW1] SR over @HOME connection (See Notice Below)
And just as a an added thought.
When I did a clean install of 4.1 Sp2 on the backup firewall, I had no
problems accessing with SR via my DSL.
However, when I upgraded from 4.0 to 4.1 SP2 on the production box, I wasnt
able to with the exact same rules and setup as the backup firewall.( Believe
me I double checked!)
After removing 4.0 and doing a clean install of 4.1 on the prod box and
recreating everything, I was able to then again use the DSL with SR.
I was never to isolate the reason why and since it worked, it didnt really
matter at the time.
Andy David
J. Muller International / Egis, Inc.
-----Original Message-----
From: Reynolds, Tom [mailto:[email protected]]
Sent: Thursday, November 02, 2000 2:34 PM
To: '[email protected]'; Joe Delsol
Cc: FW-1 List (E-mail)
Subject: RE: [FW1] SR over @HOME connection (See Notice Below)
Hi all,
We were recently able to resolve this same issue with DSL and the NAT and
LinkSYS router. What I came to realize from the logs was that the firewall
was issuing a KEY INSTALL to one address (the routers valid address) and
then traffic tried to come in from the host (NATed address). That wasn't
going to work. We had the client turn off NAT, use a valid internet
address, install a personal firewall, and all worked.
Sorry I can't be more specific about the LinkSYS config. I only needed to
get the VPN working, not start troubleshooting DSL and NAT issues.
If you need to work it out with NAT, Phoneboy.com had some info about
LinkSYS and NAT and DSL. Good Luck.
Tom Reynolds, MCSE, CCNA
_________________________
Pilgrim Baxter and Associates
Network Security and Engineering
825 Duportail Rd.
Wayne, Pennsylvania 19087-5525
[email protected]
-----Original Message-----
From: [email protected]
[mailto:[email protected]]
Sent: Thursday, November 02, 2000 1:12 PM
To: Joe Delsol
Cc: FW-1 List (E-mail)
Subject: Re: [FW1] SR over @HOME connection (See Notice Below)
DSL is not support by Checkpoint. It works sometimes and sometimes it does
not.
Joe Delsol <[email protected]> on 11/02/2000 12:46:29 PM
To: "FW-1 List (E-mail)" <[email protected]>
cc: (bcc: Gail Hulse/DEWEY)
Subject: [FW1] SR over @HOME connection
Is anyone able to do this?
I had two users try last night and they had different results.. The first
could get Authenticated, but the second was prompted for the USERid/password
and then was not able to reach the server.. The person that did get
Authenticated was not able to get any packets to the site after the
Authentication.
The known difference between the two users is that the one that did get
Auth. has a linkSYS DSL/Cable broadband router doing NAT.
We do have SR working from behind NAT over DSL.
Any ideas?
Thanks!
Joe
If you want to send direct to me, I'll keep your post off the list.
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
--- End Message ---
