[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW1] Need linux product to connect to Checkpoint VPN-1 1.4 with FWZ keys.
Greetings! "G. Georgiev" schrieb: > I have to connect from a linux machine to Checkpoint VPN-1 > gateway configured to use FWZ key scheme. I can not influence other side > to change the keying scheme, nor do anything else for me - they are big > corporation, with their standards, burocracy, etc. FWZ only supports 40bit obscuration (40bit are no key for encryption to be named such any more) and an authentication scheme with a SERIOUS design hole (just send back identical challenge and hash as you got from the FW - and you are authorized) - so it is highly advised not to use FWZ. > Which product may I use to do that? FreeSWAN doesn't use FWZ keys, > is there something other, preferably free, I may use? The package has also > to perform IP masquerading for the secure channel. > Is there a Checkpoint client supporting FWZ key encription scheme > for linux? FWZ is a proprietary Checkpoint protocol, so no luck here - sorry. Bye Volker -- Volker Tanger <[email protected]> Wrangelstr. 100, 10997 Berlin, Germany DiSCON GmbH - Internet Solutions http://www.discon.de/ ================================================================================ To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================================================
|