Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] VPN with NAT

To: [email protected]
Subject: Re: [FW-1] VPN with NAT
From: Angel Barcenilla García <[email protected]>
Date: Wed, 29 May 2002 10:46:24 +0200
Importance: Normal
In-reply-to: <[email protected]>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Hi Crist,

You are "the best"

Finally, we have solved this issue. I didn't allow the return connection in
my FW-1 rules...Sorry.

Thanks a lot. Angel ;-))

> -----Mensaje original-----
> De: Mailing list for discussion of Firewall-1
> [mailto:[email protected]]En nombre de Crist
> Clark
> Enviado el: martes 28 de mayo de 2002 20:22
> Para: [email protected]
> Asunto: Re: [FW-1] VPN with NAT
>
>
> Angel Barcenilla García wrote:
> >
> > Hi Crist,
> >
> > You're right. I'm doing 1-to-1 NAT. I don't know if it would be
> better to
> > work with "hide" NAT??
> >
> > Anyway, as you assumed in my side I have a CISCO VPN client for
> Windows in
> > order to connect to a VPN CISCO Concentrator. In the rule, I
> have allowed
> > ESP protocol, IKE UDP and IKE TCP.
> >
> > I get connection with the remote VPN Concentrator, that is, the secure
> > connection is up, but when I try to connect with the final application
> > (telnet) by means of the tunnel, I don't get any answer. I
> really don't know
> > why??
>
> My first guess would be a routing problem. When your telnet
> connection comes
> out of the tunnel, the return connection need to find its way
> back into the
> tunnel for the return trip. Make sure that is happening.
>
> The problem does not really sound like it is a firewall issue.
> --
> Crist J. Clark                               [email protected]
> Globalstar Communications>
> The information contained in this e-mail message is confidential,
> intended only for the use of the individual or entity named above.
> If the reader of this e-mail is not the intended recipient, or the
> employee or agent responsible to deliver it to the intended recipient,
> you are hereby notified that any review, dissemination, distribution or
> copying of this communication is strictly prohibited.  If you have
> received this e-mail in error, please contact [email protected]
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

References:
- Re: [FW-1] VPN with NAT
  - From: Crist Clark <[email protected]>

Prev by Date: [FW-1] NG FP2: Firewall tries to fetch Policy via external Interface
Next by Date: Re: [FW-1] SMTP question
Previous by thread: Re: [FW-1] VPN with NAT
Next by thread: [FW-1] SMTP Security Server
Index(es):
- Date
- Thread