NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

RE: [FW1] Setting up VPN tunnel from FW-1 to Watchguard Firebox..



Title: RE: [FW1] Setting up VPN tunnel from FW-1 to Watchguard Firebox..
I have built a VPN successfully with a Watchguard and a Check Point 4.1.  I've got beyond the "no response from peer" error you're seeing through a lot of trial and error.  One thing I found out which I was unaware of is that Phase 1 is _hard-coded_ on the Watchguard, and can ONLY be DES and SHA1.  Once I made the changes on my config to reflect this, the VPN negotiation worked fine.  However, I have a new problem:  when I try to get packets back and forth between the two networks I've defined, I get an "encryption failure: gateway connected to both endpoints scheme: IKE" error message. I've looked at everything I can think of to resolve this, no luck.  Any thoughts on my problem?  Oh and hey, let me know if what I've put down above re: the hard-coded Phase 1 values solves your problems!
 
Dave Millier, CISSP
-----Original Message-----
From: [email protected] [mailto:[email protected]]On Behalf Of James Clarke
Sent: Wednesday, June 13, 2001 4:11 AM
To: 'Goetz, Jarrett'
Cc: FW-1 Mailing List (E-mail)
Subject: RE: [FW1] Setting up VPN tunnel from FW-1 to Watchguard Firebox..

Hi Jarret
 
So far, no news.  Am about to escalate to Checkpoint support through our reseller....  I will post info once I get anything worth posting.
 
Thanks,
James.
-----Original Message-----
From: Goetz, Jarrett [mailto:[email protected]]
Sent: 13 June 2001 05:14
To: James Clarke
Subject: RE: [FW1] Setting up VPN tunnel from FW-1 to Watchguard Firebox..

Jim, I will have to do the same thing shortly, did you get any good answers to this?

Thanks.

Jarrett

-----Original Message-----
From: James Clarke [mailto:[email protected]]
Sent: Thursday, June 07, 2001 03:59
To: FW-1 Mailing List (E-mail)
Subject: [FW1] Setting up VPN tunnel from FW-1 to Watchguard Firebox..



Hi

I am trying to establish a VPN between a Firewall-1 4.1 to a Watchguard
Firebox II.  All appears to be configured correctly, but when I try to bring
the VPN up, the Checkpoint log file shows "no response from peer" and the
Firebox shows "from <FW-1_ip_address>. Sending INVALID_COOKIE message."

Does anyone have any experience of setting this type of connection up?  I
have followed a tech note from Watchguard, and this has proved
inconclusive...

Thanks in advance,
James Clarke


================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================



 
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.