[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] ISAKMP not work for illegal IPs
Hello, I have 2 firewalls on v4 patch 4058 and switched the firewalls to use ISAKMP for the VPN instead of FWZ. However, I can only successfully run the VPN by taking legal IP. Any attempts to talk illegal IP will either have nothing shown in the log or a reject entry saying that the packet is not ISAKMP. The encryption domains have been set correctly. If I add the following rules into the beginning of the security policy, before the encryption rule, Firewall-A, Firewall-B, ISAKMP, Accept Firewall-B, Firewall-A, ISAKMP, Accept The VPN does not allow legal IP. Illegal IP continues to be not working. Do you have any idea what is wrong? Thanks in advance! Cheers, Norman Lim ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|