Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] IPSEC Connection to Nortel Extranet Firewall

To: [email protected]
Subject: Re: [FW-1] IPSEC Connection to Nortel Extranet Firewall
From: erik <[email protected]>
Date: Wed, 5 Jun 2002 13:10:29 -0400
References: <OF23F48C31.EE3641F7-ON85256BCF.0057C6E6-85256BCF.0058799A@private.hdgh.org>
Reply-to: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

you need to turn on nat traversal on your contivity. it is under
services>ipsec.

I have done this and I have seen it work.

You must have at least 4.0 code on your contivity.

IPSEC and NAT do not get along.


Erik Witkop, CISSP
Boston, MA

----- Original Message -----
From: "Sean Donaghey/HDGH" <[email protected]>
To: <[email protected]>
Sent: Wednesday, June 05, 2002 12:06 PM
Subject: [FW-1] IPSEC Connection to Nortel Extranet Firewall


> Hi,
>
> I have a vendor that is currently in-house, and wants too connect to his
> server that is behind a Nortel firewall.  He is curently using the Nortel
> Extranet client.  I have created a bidirectional rule from his computer to
> his server with @Any services (for testing).  I see an IKE connection to
> his server, but his client does not get a reply back from the server.  We
> use Hide-NAT for the internal network, and after so digging in the
> archives, it looks like there might be an issue with Hide-NAT and Nortel.
>
> This vendor states that he can access this server from behind a Linksys
> Cable router, but me thinks that Firewall-1 Hide-NAT, and Linksys's NAT
are
> a little different, so that is may be why it works.
>
> Does anyone have any ideas on how to get this to work?
>
> My FW config is: Firewall-1 v4.1 SP3 on a Nokia IP440 with IPSO 3.2.1
>
> Thanks,
>
> Sean P. Donaghey
> Sr. Technical Analyst
> Hôtel-Dieu Grace Hospital
> Windsor, Ontario Canada
>
> Tel:Ext. 3717
> Fax:> Email: [email protected]
>
> =================================================
> To set vacation, Out Of Office, or away messages,
> send an email to [email protected]
> in the BODY of the email add:
> set fw-1-mailinglist nomail
> =================================================
> To unsubscribe from this mailing list,
> please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> =================================================
> If you have any questions on how to change your
> subscription options, email
> [email protected]
> =================================================
>

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

References:
- [FW-1] IPSEC Connection to Nortel Extranet Firewall
  - From: Sean Donaghey/HDGH <[email protected]>

Prev by Date: [FW-1] Nokia IP 440 and NG
Next by Date: Re: [FW-1] Nokia IP 440 and NG
Previous by thread: [FW-1] IPSEC Connection to Nortel Extranet Firewall
Next by thread: Re: [FW-1] IPSEC Connection to Nortel Extranet Firewall
Index(es):
- Date
- Thread