| |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] Problem setting up securemote connection to FW-1 SP3 (encrypt ion failure: No peer gateway found f or the destination scheme:
- To: [email protected]
- Subject: Re: [FW-1] Problem setting up securemote connection to FW-1 SP3 (encrypt ion failure: No peer gateway found f or the destination scheme:
- From: "Roelandts, Guy" <[email protected]>
- Date: Wed, 14 Nov 2001 08:33:25 -0000
- Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
- Sender: Mailing list for discussion of Firewall-1 <[email protected]>
Alan,
You have created a rule in your Security Policy, and are using Encrypt in
the
Action tab, but have you edited this encryption to match what you are
looking
for ? Setting all this up is not only done through the Policy Properties
but
also here.
Met vriendelijke groeten - Bien à vous - Kind regards
Guy ROELANDTS
EMEA GS Internet Expertise Centre - CCSA & CCSE
Compaq Software Engineer - Belgium
E-mail : [email protected]
Tel: +32(02)729.77.44 (options 3 - 3 - 1)
Fax: +32(02)729.77.65
=====================================================================
This message may contain confidential and/or proprietary information,
and is intended only for the person/entity to whom it was originally
addressed. The content of this message may contain private views and
opinions which do not constitute a formal disclosure or commitment
unless specifically stated. Should you receive this message by mistake
please inform the sender immediately.
=====================================================================
-----Original Message-----
From: Alan Choyna [mailto:[email protected]]
Sent: Wednesday, November 14, 2001 2:26 AM
To: [email protected]
Subject: [FW-1] Problem setting up securemote connection to FW-1 SP3
(encrypt ion failure: No peer gateway found for the destination scheme:
Hi folks,
I'm trying to set up my FW-1 4.1 SP3 to be able to allow securemote
(build 4188) access from external machines.
The external PC's are each sitting behind a linksys router (firmware
1.40.1) using either DSL or Cable internet connections, using non static
external ip addresses.
I installed the encryption license (DES3), and have configured a user
(smith) with the user Authentication scheme VPN-1 & Firewall 1 Password,
with Encryption options IKE & FWZ checked.
I have created the following rules:
any Smiths_machine_behind_FW1 PCanywhere encrypt.
We are using securemote (build 4188) and have checked the IKE option
under tools/Encryption, and Force UPD encapsulation and Support IKE over
TCP under its advanced settings.
When smith trys to connect from his external PC, the following rejects
appear in the Log "encryption failure: No peer gateway found for the
destination scheme: IKE."
Is the error because l do not have a domain object as the source? If so,
how would l set up a domain object which doesn't have an static ip?
What encrytion/logon/securemote services should l allow?
We wish to use DES3. Have l set the correct options on the user object?
and the securemote client options?
Anything special to do in the Policy properties?
Sorry for all the questions, but there are so many variables here, that
l find myself lost.
Regards,
Alan.
===============================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===============================================
===============================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
===============================================
|
|
