|
Ed,
Can you clarify "does not see my remote network
clients?" As in traffic won't move? What do traceroutes show?
Do pings work? Anything interesting in the logs (sounds like no, but humor
me).
If the traffic flow from behind the CP to behind
the NS is the issue, can you determine whether the traffic is actually getting
as far as the remote NS? Is it possible that you have an asymmetric
routing scenario or some other issue that is keeping the traffic from being sent
to the CP for encapsulation in the first place?
It honestly sounds like a routing problem... feed
us more info :)
---
Russell Washington, CCSE, CCSA, NCSA
Too
many doggoned letters after my name.../
----- Original Message -----
Sent: Thursday, January 02, 2003 11:51
AM
Subject: [FW-1] VPN -1 with NetScreen
Question.....need a llittle help
Hello All,
I have
been trying to setup a VPN for the past few weeks between a NetScreen 5XP and
Checkpoint FW-1 4.1 SP6 on NT 4.0. Phase 1 and Phase 2 sync and everything is
outstanding as far as the tunnels go.
Now I am running into an issue where the network
behind Checkpoint does not see my remote network clients. The strange thing is
that the remote network can see everything and access what they need to.
Am I missing something with routing here? Has
anyone seen this? I tried to work with NetScreen people on this but got the
expected answer that they do not know Checkpoint and to check their
knowledgebase which has proved un-helpful. Any help is much
appreciated!
Thanks,
Ed Valasek
Systems Administrator
Integrator.com
All words above
are not actual sentences but random letters, spaces and the occasional
punctuation. I can not be held responsible for the meaning you get from these
random letters. I can however be held responsible for the
spaces.
| 
