|
|
|
|
|
|
|
|
 |
 |
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Novell VPN issue
Hi, Have done loads of Novell IP based VPN's (back in the day (98), when ISP's in the US, offered IP over Frame Relay and said it was a VPN (PSINet)....That was all Novell 3.x and 4.11. Its was real easy to do, the Novell server got a TCP/IP configuration and you just tunnelled IPX into TCP/IP between servers, across sites. The Novell clients of course where IPX to the Server. Novell ver. 5 changed all this...So it can depend on the ver. of Novell involved. Without the VPN enabled (make Temp rules in the rule base on both sides to, establish if basic connectivity (Pings) can happen on a TCP/IP level, before you actually enable the FW-1 VPN, between the two Novell servers....once you have this sorted then start adding the VPN complexity, start with a FWZ VPN, then once that works try IPSec....Apply the VPN for test purposes, troubleshoot from external interface of firewalls....ARP from firewall to see Novell server IP, and then ping the local server from each firewall..... If the TCP/IP is correct, the IPSec might be munging the tunnelling, depending on the type of Novell being used.... Let us know, what happens................... -Bye Joe McGean Technical Security Architect Allianz, Ireland www.allianz.ie bfuller <[email protected]> on 17/04/2002 19:48:20 Please respond to Mailing list for discussion of Firewall-1 <[email protected]> To: [email protected] cc: (bcc: Joe McGean/AGFIL/AGF) Subject: [FW-1] Hello, I have a vpn between two office branches using IKE and shared keys. The firewall at both ends is running on Nokia IP440 running FW1/VPN1. At the remote end, the service pack is SP3, and at my end it is SP2. When I try normal, or passive ftp, the firewall drops the data connection packets saying "unknown established tcp packet". No problem with the control connection though. I get better behavior when ftping to a windows box (it drops often, but can transfer files most of the time), but no luck at all with the data connection to the ftp server running on Novell. Is this a novell issue, or a firewall-1 issue? Any insite into this problem would be very much appreciated. I am thinking at this point that it may have something to do with the Service pack levels. I have read where there have been improvements to ftp in SP2, but no security servers are being used in this case. Thanks, B ******************************************************************** Please Note: Our e-mail address is now 'allianz.ie' Visit our website at http://www.allianz.ie Disclaimer : The information contained and transmitted in this e-mail is confidential information, and is intended only for the named recipient to which it is addressed. The content of this e-mail may not have been sent with the authority of the company. If the reader of this message is not the named recipient or a person responsible for delivering it to the named recipient, you are notified that the review, dissemination, distribution, transmission, printing or copying, forwarding, or any other use of this message or any part of it, including any attachments, is strictly prohibited. If you have received this communication in error, please delete the e-mail and destroy all record of this communication. Thank you for your assistance. ******************************************************************** ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|
||||||||||
 |
 |
 |
 |
 |
 |
 |
 |
 |
|
