[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW1] SecureClient/Remote - multiple domains
Mick, You should insert an exception rule for NAT (manually) so the packets that will be part of IKE would not be translated. It will make the all the other traffic go through nat except the vpn, I hope this helps, best wishes Aylton ----- Original Message ----- From: "Mick Gunter" <[email protected]> To: <[email protected]> Sent: Wednesday, March 21, 2001 3:43 PM Subject: RE: [FW1] SecureClient/Remote - multiple domains > > Hello, > > Am working on setting up a point to point IKE VPN between two Nokia IP330 > boxes. both are vpn-1 4.1 sp2. > > After configuring both sides for VPN, I can originate communication from > site A to site B but not from Site B to site A. > > The curious thing in the logs is that on site A (the site that seems to > work) when I ping site B the log records the actual (invalid) IP addresses > for both the source and destination node > > On site B (the site that doesn't work) the log file records the external if > of site A's firewall. > > I have hide nat configured for both internal network subnets. > > thanks in advance for assistance, > Mick > > > ============================================================================ ==== > To unsubscribe from this mailing list, please see the instructions at > http://www.checkpoint.com/services/mailing.html > ============================================================================ ==== > ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|