[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW1] SecureRemote Hybrid IKE MEP Issue
Hi all, Firewalls: FW-1 v4.1 SP3 on Nokia IP440's running IPSO 3.3 Mgmt. Console: FW-1 v4.1 SP3 on W2K SecureRemote build 4176 I'm experiencing some real pain getting SecureRemote running with multiple entry points. If one of our firewalls (not clustered) dies, I want the SecureRemote users to failover to a different firewall. I've got SecureRemote with hybrid IKE up and running. When only one firewall is being used as an entry point (only one marked as exportable), the VPN works fine. When I attempt to configure the other three firewalls as backup gateways, I get the following error: "Negotiation with firewall at site ..xxx.xxx has failed. Firewall does not support IKE." I am able to successfully retrieve the topology and authenticate at all times. I have attempted this with users from the FW-1 database and Radius. The firewall obviously supports IKE because an IKE tunnel was sucessfully established before switching to the multiple entry point configuration. Any ideas? Please CC my email address in any feedbak you may provide to the list. I don't seem to be receiving the digest of this last as much recently...? ___________________________ Aaron Shilts eSecurity Consulting, Inc. PGP key ID: 0x1BD13B5F __________________________ ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|