[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW-1] Checkpoint NG to 4.1 VPN Troubles
Good Afternoon. I am experiencing a couple of issues with establishing a VPN between an NG and 4.1 Firewall. I am running NG in traditional mode at the moment, and believe I have everything set correctly. This is an excerpt from the logs which details the most response I have had from the VPN tunnel. I see the IKE request being accepted from the remote firewall to the local firewall on rule 0. I see a Key Install message, saying IKE: Main Mode failed to match proposal: 3DES,SHA1, Pre Shared Secret, Group 2 (1024bit) I see another Key Install message from the local firewall to the remote firewall IKE Main Mode Sent Notification, no proposal chosen. The firewall object for my firewall on the remote security policy has 3DES and SHA1 set, and at the moment, my local firewall is set to DES and MD5, which clearly explains the above error in the logs. However, when I change my firewall object to use 3DES and SHA1 to try and remedy the error, I get nothing on my Firewall logs, and on the remote Firewall logs, all I get is No Proposal Chosen. Anyone got any helpful ideas ? Thanks. Regards Neil Kemp Security Consultant Business Sense IT Ltd _____ Suite 296, 17 Holywell Hill, St Albans, AL1 1DT. * +44 (0) 8700 201694 * +44 (0) 7958 545129 * 07092 153679 * [email protected] " http://www.businesssense.co.uk <http://www.businesssense.co.uk/> http://www.secureadvice.co.uk <http://www.secureadvice.co.uk/> ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|