[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [FW-1] v4.1 SecureClient and VPN-1 NG FP1 ?
Hey James,
In NG, Hybrid mode as well as IKE preshared can be used for topo download,
but in 4.1 only IKE preshared can be used. Set yourself up with a user with
no authentication tab settings and use an IKE preshared key.
Backward comp is available for FP1, but you don't need that unless you have
a distributed environment and have a 4.1 module.
Let me know what you find.
-----Original Message-----
From: Mailing list for discussion of Firewall-1
[mailto:[email protected]]On Behalf Of James
Schnack
Sent: 10 May 2002 20:50
To: [email protected]
Subject: Re: [FW-1] v4.1 SecureClient and VPN-1 NG FP1 ?
Jim,
Sorry for the late reply. Here are the answers to your questions.
a) We are not using pre-shared secrets. Hybrid mode is configured.
b) Nothing at all shows up in the Log Viewer, and the corresponding rules
have the "Log" option under "Track".
Would something like the Backwards Compatibility package be required for
this ? The problem is that there is no such package for IPSO and FP1 (as
opposed to other platforms - Solaris, Windows, Linux - and FP1).
Has anybody confronted this issue ? Are there any v4.1 SR clients working
with NG FP1 (on Nokia) out there ????
Thanks in advance for any help!
Regards,
James
>From: Jim Parker <[email protected]>
>Reply-To: Mailing list for discussion of Firewall-1
><[email protected]>
>To: [email protected]
>Subject: Re: [FW-1] v4.1 SecureClient and VPN-1 NG FP1 ?
>Date: Tue, 7 May 2002 23:12:11 +0100
>
>is the user you are trying to authenticate with and receive topology, are
>you using preshared key?
>
>what do you see in the firewall log viewer?
>
>
>
>
>-----Original Message-----
>From: Mailing list for discussion of Firewall-1
>[mailto:[email protected]]On Behalf Of James
>Schnack
>Sent: 07 May 2002 21:12 To: [email protected]
>Subject: [FW-1] v4.1 SecureClient and VPN-1 NG FP1 ?
>
>
>Hi,
>We have NG FP1 running on a Nokia box. This box will replace a current v4.1
>FW. The current FW receives connections from SecureClient v4.1 SP5 3DES
>Build 4199. In a lab setup, we have NG SecuRemote working fine with the NG
>VPN-1 box, but we are unable to get the v4.1 clients to connect (IKE). We
>see traffic on port 264/tcp, but are unable to add the site. We get an
>"Error: Authentication failed" message on the client side, after entering
>user and password. Has anybody got "old" v4.1 SR/SC to work with NG FWs ?
>Is
>this possible? Thanks for your help,
>
>James
>
_________________________________________________________________
Send and receive Hotmail on your mobile device: http://mobile.msn.com
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================
=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================