| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW1] Need linux product to connect to Checkpoint VPN-1 1.4 with FWZ keys.
Greetings!
"G. Georgiev" schrieb:
> I have to connect from a linux machine to Checkpoint VPN-1
> gateway configured to use FWZ key scheme. I can not influence other side
> to change the keying scheme, nor do anything else for me - they are big
> corporation, with their standards, burocracy, etc.
FWZ only supports 40bit obscuration (40bit are no key for encryption to be named
such any more) and an authentication scheme with a SERIOUS design hole (just send
back identical challenge and hash as you got from the FW - and you are authorized) -
so it is highly advised not to use FWZ.
> Which product may I use to do that? FreeSWAN doesn't use FWZ keys,
> is there something other, preferably free, I may use? The package has also
> to perform IP masquerading for the secure channel.
> Is there a Checkpoint client supporting FWZ key encription scheme
> for linux?
FWZ is a proprietary Checkpoint protocol, so no luck here - sorry.
Bye
Volker
--
Volker Tanger <[email protected]>
Wrangelstr. 100, 10997 Berlin, Germany
DiSCON GmbH - Internet Solutions
http://www.discon.de/
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
|
|
