| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: [FW1] SecuRemote not working behind Linksys BEFSR41
I have had the same problem with several users. Here's the fix
Jeff
Look in the registry for the following key, then set your MTU size to less
than 1400 for each Network adapter.
Change the Maximum Transmission Unit (MTU) Size(Windows NT/2000)
Category: Enhancements > Network > Protocols > TCP/IP
This parameter specifies the Maximum Transmission Unit (MTU) for a network
interface. By optimizing the MTU setting you can gain substantial network
performance increases, especially when using dial-up modem connections.
MTU stands for Maximum Transmission Unit and in basic terms, it defines the
maximum size of a packet that can be transferred in one frame over a
network.
Open your registry and find the key below. Add a new value, or edit the
existing value, to equal the new MTU size. For low bandwidth modem
connections a MTU value of '576' (1398 in decimal) would be a good size.
For Windows 2000 the key is
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\Parameters\
Interfaces\[Adapter ID]*
*[Adapter ID] is a long string ex.{3A454EA3-9541-447D-8A1D-CF9B930B8024}
Change the MTU size for each adapter (or string) in the Interfaces branch of
the registry.
Settings
Key: [HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Tcpip\
Parameters]
Value Name: MTU
Data Type: REG_DWORD (DWORD Value)
Value Data: Default = 0x00000576 (1398)
-----Original Message-----
From: Robert Soong [mailto:[email protected]]
Sent: Wednesday, September 05, 2001 12:40 PM
To: [email protected]
Subject: [FW1] SecuRemote not working behind Linksys BEFSR41
I've seen others post that all you need is the latest firmware and IPSec
enabled on the Linksys and UDP Encapsulation set on the SecuRemote client.
We have tried all that and still can't get it to work.
We are using FW1 SP4 3DES. IKE Hybrid Mode. We have tried both 1.37 and
1.39 firmware revisions on the Linksys. We are trying from Time Warner
Cable's RoadRunner cable modem service. We are using the latest 3DES build
4185 client. Tried on both W2k and W98 still same results. When trying to
access an internal resource, there is no response. Never get the dialogue
box to enter a username and passcode. When trying to telnet or ping an
internal resource it just times out. Bypass the Linksys and I get the
prompt and enter credentials and get in - no problem.
Have already tried the doc's on the Linksys and Phoneboy site. Those docs
appear to be in reference to PRE-SP4 versions of FW1. Nevertheless, we
tried all those settings and changes in the objects.C and still no luck. We
didn't think that those changes are necessary with SP4 so we took them out
for now.
Please help,
Thanks,
Robert Soong, Systems Administrator
[email protected]
CFI, Westgate Resorts
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
|
|
