Re: [FW1] Secure remote help

[key chavez <keychavez@FW1-NOSPAMyahoo.com>]

Rule 0 are the implied rules (you can see this rules
by secting Implied Rules in menu View).
There is a paper (at phoneboy or checkpoint) showing
how to configure a policy server (used for
authentcation with ike methods) otherwise you have to
configure fwz. The procedure to create a policy server
is quite simple, and, in my opnion, much better than
use fwz.

If you want I can send you this paper.


Key



--- Eyal Rif <EyalR@webmap.com> wrote:
> 
> Hi,
> 
> I have fw4.1 3DES,
> 
> I try to configure for remote access but getting
> "Authentication fail" in
> secuRemote client (4.1 sp2 strong), and FW gateway
> log viewer should me the
> problem is rejected at rule 0 (what is rule 0?),
> because of "Refused
> Topology request. Password expired."
> In the user object, it's defined to use "Firewall-1
> Password", and a simple
> password. Encryption is using "IKE".Added to
> VPNusers.
> My policy is using: "VPNusers@Any any any Client
> Encryption ..."
>  In client site, the key scheme is using "IKE". I
> get username and password
> query when I "Site->Make New", but after that,
> return only authentication
> fail.
>  Does anybody know what's the problem may be?
> 
> Thanks,
> 
> 
>
================================================================================
>      To unsubscribe from this mailing list, please
> see the instructions at
>               
> http://www.checkpoint.com/services/mailing.html
>
================================================================================


__________________________________________________
Get personalized email addresses from Yahoo! Mail - only $35 
a year!  http://personal.mail.yahoo.com/


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================