[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [FW-1] VPN problem

To: [email protected]
Subject: Re: [FW-1] VPN problem
From: Jean-Francois Gobin <[email protected]>
Date: Mon, 16 Dec 2002 10:16:08 +0100
In-Reply-To: <[email protected]>
Reply-To: Mailing list for discussion of Firewall-1 <[email protected]>
Sender: Mailing list for discussion of Firewall-1 <[email protected]>

Hello,

Maybe you should also (if you have disabled the implied rules) accept TOPO
connections (and download) from Any to your FW, as well as IKE.

JF


On Sun, 15 Dec 2002, Raman Kalla wrote:

> Hi All,
>
>  I installed an NT machine with NG FP1; everything is running smooth except
> the VPN. VPN client is not able to connect to the FW and access applications
> in internal NW.
>
> Rule 1 : SecRemUsers@any        Internal_NW             any
> client encrypt          FW
> Rule 2:  any                    FW                      any             drop
> FW
>
> If somebody tries to create a new site from outside, I see a packet drop
> because of Rule 2. Thanks in advance.
>
> Raman Kalla
>
> IMPORTANT NOTICES:  The information contained in this electronic message is
> privileged and confidential information intended only for the use of the
> individual(s) named above.  Please notify the sender by e-mail if you are
> not the intended recipient.  If the reader of this message is not the
> intended recipient, you are hereby notified that any dissemination,
> distribution or copying of this communication is strictly prohibited. HD
> Brous & Co., Inc. ("Brous") does not accept time sensitive, action-oriented
> messages or transaction orders, including orders to purchase or sell
> securities, via e-mail. Brous reserves the right to monitor and review the
> content of all messages sent to or from this e-mail address. Messages sent
> to or from this e-mail address may be stored on the Brous e-mail system.
> Such may be produced at the request of regulators.  Sender accepts no
> liability for any errors or omissions arising as a result of transmission.
>

--
Jean-Francois Gobin - Administrateur gobinjf.be
http://www.gobinjf.be   mailto:[email protected]

=================================================
To set vacation, Out Of Office, or away messages,
send an email to [email protected]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[email protected]
=================================================

References:
- [FW-1] VPN problem
  - From: Raman Kalla <[email protected]>

Prev by Date: [FW-1] ip-addresses that connect to FW1
Next by Date: [FW-1] how to use command line to modify a rule please?
Prev by thread: [FW-1] VPN problem
Next by thread: Re: [FW-1] VPN problem
Index(es):
- Date
- Thread