[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] IKE Hybrid Auth with internal Mgmt Console
> ¦ Mgmt ¦----->¦FW1/Nokia¦------> Internet > > My Mgmt console has an internal address. I would like to configure IKE > Hybrid Auth. for SecuRemote on my FW1 but since Mmgt is on a different > machine I get confused with the CA and IKE settings described in the > CP's support PDF. I can creat an internal ca and certify the mgmt but > than I am missing the IKE settings on the object. Please help When you do the `fw internalca create` you are creating a cert for the management station. When you do an `fw internalca certify` you must use the object name for the enforcement module but the command is run on the management station. Please refer to: http://support.checkpoint.com/kb/docs/public/securemote/4_1/pdf/hybrid-2-10.pdf Also, I believe your management station needs to be accessible from the Internet for users to be able to connect with SecureRemote. I think this was changed with NG, but it made have been corrected earlier. -Don ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|