[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Problem setting up securemote connection to FW-1 SP3 (encrypt ion failure: No peer gateway found f or the destination scheme:
Alan, You have created a rule in your Security Policy, and are using Encrypt in the Action tab, but have you edited this encryption to match what you are looking for ? Setting all this up is not only done through the Policy Properties but also here. Met vriendelijke groeten - Bien à vous - Kind regards Guy ROELANDTS EMEA GS Internet Expertise Centre - CCSA & CCSE Compaq Software Engineer - Belgium E-mail : [email protected] Tel: +32(02)729.77.44 (options 3 - 3 - 1) Fax: +32(02)729.77.65 ===================================================================== This message may contain confidential and/or proprietary information, and is intended only for the person/entity to whom it was originally addressed. The content of this message may contain private views and opinions which do not constitute a formal disclosure or commitment unless specifically stated. Should you receive this message by mistake please inform the sender immediately. ===================================================================== -----Original Message----- From: Alan Choyna [mailto:[email protected]] Sent: Wednesday, November 14, 2001 2:26 AM To: [email protected] Subject: [FW-1] Problem setting up securemote connection to FW-1 SP3 (encrypt ion failure: No peer gateway found for the destination scheme: Hi folks, I'm trying to set up my FW-1 4.1 SP3 to be able to allow securemote (build 4188) access from external machines. The external PC's are each sitting behind a linksys router (firmware 1.40.1) using either DSL or Cable internet connections, using non static external ip addresses. I installed the encryption license (DES3), and have configured a user (smith) with the user Authentication scheme VPN-1 & Firewall 1 Password, with Encryption options IKE & FWZ checked. I have created the following rules: any Smiths_machine_behind_FW1 PCanywhere encrypt. We are using securemote (build 4188) and have checked the IKE option under tools/Encryption, and Force UPD encapsulation and Support IKE over TCP under its advanced settings. When smith trys to connect from his external PC, the following rejects appear in the Log "encryption failure: No peer gateway found for the destination scheme: IKE." Is the error because l do not have a domain object as the source? If so, how would l set up a domain object which doesn't have an static ip? What encrytion/logon/securemote services should l allow? We wish to use DES3. Have l set the correct options on the user object? and the securemote client options? Anything special to do in the Policy properties? Sorry for all the questions, but there are so many variables here, that l find myself lost. Regards, Alan. =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html =============================================== =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
|