[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] VPN with DES AND 3DES
David, With regards to the DES/3DES problem, what does a fw ver tell you on both Firewalls, if you are running 3DES software you should get : This is Check Point VPN-1[TM] & FireWall-1(R) Version 4.1 Build 41nnn [VPN + DES + STRONG] if you are running only the DES version I think you should get This is Check Point VPN-1[TM] & FireWall-1(R) Version 4.1 Build 41nnn [VPN + DES] With regards to the other question, I think this should work, don't see why it wouldn't Met vriendelijke groeten - Bien à vous - Kind regards Guy ROELANDTS EMEA GS Internet Expertise Centre - CCSA & CCSE Compaq Software Engineer - Belgium E-mail : [email protected] Tel: +32(02)729.77.44 (options 3 - 3 - 1) Fax: +32(02)729.77.65 ===================================================================== This message may contain confidential and/or proprietary information, and is intended only for the person/entity to whom it was originally addressed. The content of this message may contain private views and opinions which do not constitute a formal disclosure or commitment unless specifically stated. Should you receive this message by mistake please inform the sender immediately. ===================================================================== -----Original Message----- From: LEFEVRE David [mailto:[email protected]] Sent: Tuesday, November 13, 2001 12:00 PM To: [email protected] Subject: [FW-1] VPN with DES AND 3DES Hello all, I've searched for documentation, but nothing. I've got the following problem : I have 2 firewalls with a 3DES license for VPN encryption. The first one accept to choose 3DES in the enxryption properties in my rules, the second one denies it. As the 2 machines are differents systems, I can not compare the 2 installations (one Linux / One solaris). On the solaris one, in the encryption properties I can only choose between CAST/DES/DES-40CP/Null and a "fw printlic -k" gives me a 3DES license. First question : does anybody know why I do NOT have 3DES in my choice list ???? Second question : each rule applies on a group of workstations, is it possible, with the same firewall based VPN, to have different encryption levels ??? I mean, is it possible to have : rule 1 : GRP-VPN-BASE / FAR-AWAY1 / Encrypt (DES) / Log / FW_for_VPN / every time rule 2 : GRP-VPN-BASE / FAR-AWAY2 / Encrypt (3DES) / Log / FW_for_VPN / every time in the same rulebase ? Thanks for all. Best regards -- David LEFEVRE CARDIF - Architecture et Sécurité Opérationnelle [email protected] - Tél : 01 41 42 76 63 [email protected] - Tel : 01 41 42 24 22 =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|