[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] SecuRemote ports
Since you see IP Protocol Number 94 I guess you have set up the SecuRemote client to use FWZ encryption and encapsulate the packets. FWZ encryption tunnels the traffic in a FW1 Encapsulation (IP Protocol 94) (must be open from the client to the Firewall if your ISP have any filtering)..... This is used when you choose to encapsulate SecuRemote encryption..... I've never managed to specify FWZ encryption with the rulebase.... To use fwz I always enable the VPN-1 & Firewall-1 Control Connections (if anyone know how to do this through the rulebase I'm interested..... I'm not very found of the Control Connections which always enables more than I need)...... But IKE encryption is not difficult to setup with the rulebase....., but the you will have to enable either AH (IP Protocol 51) or ESP (IP Protocol 50) as well as the SecuRemote spesific ports (depens a little on your setup) and IKE (UDP Port 50)...... The traffic you see that is marked with IP Protocol 17 is UDP and might be RDP (UDP Port Number 259) which Firewall-1 one needs if you use FWZ Encryption (Using Control Connections enables Any Any RDP)...... Hope this help... /erik > -----Original Message----- > From: Konstantin Matev [mailto:[email protected]] > Sent: 11. januar 2001 23:35 > To: 'MZ'; [email protected] > Subject: RE: [FW1] SecuRemote ports > > > > Make sure that you have open 256(tcp) FW1 and 500(udp) IKE. > That's all ports > you need for secure remote with IKE authentication. Enable a > rule above the > Client Encrypt rule that says: > > any firewall 256;500(udp) accept log > > -Dex > > > -----Original Message----- > > From: MZ [mailto:[email protected]] > > Sent: Thursday, January 11, 2001 1:26 PM > > To: [email protected] > > Subject: [FW1] SecuRemote ports > > > > > > > > Hi all > > > > I am using SecuRemote build 4165 and FW1 4.1 SP2 and have > the following > > problem. After spending days pulling my hair out I > realised after running > > a port scan and packet sniffer that the SecuRemote packets > on port 264 & > > 265 were being blocked by the leased line provider. After > having a go at > > them, they finally reconfigured their routers and I am now > able to create > > and update sites. > > > > I have also got them open UDP port 259 and I have tested > this by telneting > > to that port. When SecuRemote is activated and I try and > access resources > > behind the firewall, I am obviusely presented with the > login dialogue box > > and I get the following error: > > > > No answer from firewall at x.x.x.x and I am not authenticated. > > > > The packet sniffer does not see any packets from the > SecuRemote client, > > which means that they never reach my firewall and are > dropped somewhere. I > > have analysed the packets on working SecuRemote setup and > the packets show > > up as IP service 94 and IP service 17. Could someone > explain this for me > > as the ISP doesn't know what is going wrong. > > > > Best regaards and thks in advance. > > > > MZ > > > ============================================================== > ================== > To unsubscribe from this mailing list, please see the > instructions at > http://www.checkpoint.com/services/mailing.html > ============================================================== > ================== > ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|