Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] Question about VPN SecuRemote

To: [email protected]
Subject: Re: [FW-1] Question about VPN SecuRemote
From: Richard Marshall <[email protected]>
Date: Thu, 4 Apr 2002 17:17:15 +0200
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Title: RE: [FW-1] Question about VPN SecuRemote

if you are creating specific acocunts for each user (instaed on generic* for RADIUS) then you need toenter the password in two places (i believe...) Once under the authentication tab as VPN-1 and Firewall-1 password, and then under the Encryption tab, select IKE and edit. Then check 'password' and enter the same password again. Also make sure public key is unchecked. save the user details and push to the firewalls again.

I hope this helps, and that I'm not 'barking up the wrong tree'!!

regards

rich :)

-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:[email protected]]On Behalf Of Etts,
Russell
Sent: 04 April 2002 15:30
To: [email protected]
Subject: [FW-1] Question about VPN SecuRemote
Importance: High

Hi all

Please bear with me. I am not knowledgeable at all, so if I don't provide
enough information, then let me know what else you need.

We had someone come in and change the encryption scheme on the firewall to
use IKE. We had to have everyone update their client to use VPN + Strong in
order to authencate. One of the reasons we did this is so people can use
SecuRemote from behind a home router. I was told the only thing I need to
do is open the client and go to tools, encryption scheme, advanced and
choose "Force UPD encapsulation". When we do this, two people have gotten
an error stating they are not defined to use IKE. I check the encryption,
the are set to use IKE. When I get this error, the only thing I can do is
to delete and recreate the site, reboot the computer and then I can have the
people authencate - but never behind the home router.

Can someone please point me in the direction of what to look for??

Thanks for all your time and advice

Russell

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

Follow-Ups:
- Re: [FW-1] Question about VPN SecuRemote
  - From: Don <[email protected]>

Prev by Date: Re: [FW-1] Disabling Flows on Nokia-330 Permanently
Next by Date: Re: [FW-1] Log Viewer Not responding
Previous by thread: [FW-1] Question about VPN SecuRemote
Next by thread: Re: [FW-1] Question about VPN SecuRemote
Index(es):
- Date
- Thread