NETWORK PRESENCE ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT
 


Search
display results
words begin  exact words  any words part 
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Securemote Policy Download/Key Exchange.

Title: RE: Securemote Policy Download/Key Exchange.

FireWall-1: InvokeIsakmpServer: can't bind to UDP socket, port: 500:

Have you stopped the IPSEC service on win2k?

 

 

-----Original Message-----
From: Mailing list for discussion of Firewall-1 [mailto:[email protected]]On Behalf Of Hanke, Christian (DC)
Sent: 02 April 2002 22:56
To: [email protected]
Subject: Re: [FW-1] Securemote Policy Download/Key Exchange.

I said below that I download the topology fine but now I am not so sure this is the case. My LMHOSTS file does get updated with the info from Objects.c and I authenticate without error. Directly below is the only entry in the FW1 log about my attempted connection.

Inter  = DAEMON

Origin = x.x.x.x

Type = Log

Action = "">

Service =

Source = x.x.x.x

Dest =

Proto =

Rule = 0

SPort =

User = (my user name)

Product = VPN-1 & Firewall Module

Info = Reason User authenticated by firewall. Sending encrypted topology. Scheme:SSL

There is no trace in the FW1 log of what happens after I tell it to download the policy before I get the Communication with site x.x.x.x failed message.

Thanks for any insight you can provide,

Christian

      -----Original Message-----
      From: Hanke, Christian (DC)
      Sent: Tuesday, April 02, 2002 11:52 AM
      To: [email protected]
      Subject: Securemote Policy Download/Key Exchange.


      Hi all, I've got a problem here I can't seem to resolve. I did something dumb. I upgraded my NT4 FW 4.1 box to Win2k Advanced Server. I had many, many problems after this all of which I have worked through except this last one. Any ideas or thought would be greatly appreciated. I've looked at Checkpoint's and Phoneboy's sites to no avail.

      The Firewall works fine with the exception of an Application Event Log error that reads:

      FireWall-1: InvokeIsakmpServer: can't bind to UDP socket, port: 500: Incorrect function.

      And

      FW1SVC: Fetching Security Policy from localhost failed.

      Although I don't think the second error is a problem because the security policy seems to load fine and with no errors.

      Also, in the System Event Log I get this,

      FW1: Failed to open FW1 Linkage)

      Data:

      0000: 00 00 00 00 02 00 4c 00   ......L.

      0008: 00 00 00 00 01 00 00 c0   .......À

      0010: 01 00 00 00 00 00 00 00   ........

      0018: 00 00 00 00 00 00 00 00   ........

      0020: 00 00 00 00 00 00 00 00   ........

      Now, when I try to establish a Securemote connection I connect to the site fine and seem to download the topology with no problems. When the message about downloading a policy comes up, I click yes, and there is a 1 minute pause. Then I get an error that "Communication with the site x.x.x.x failed." Happens every time. I am including the fwenc.log which I have reviewed and nothing seems to stand out at me in it. Anyone out there ever experience anything like this?

       << File: fwenc.log >>

      Thanks all,

      Christian


  
----------------------------------

ABOUT SERVICES PRODUCTS TRAINING CONTACT US SEARCH SUPPORT SITE MAP LEGAL
   All contents © 2004 Network Presence, LLC. All rights reserved.