[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] Re: [FW-1] Secureclient from behind SOHO-Router?
Have you enabled Tools / Advanced IKE Settings / Force UDP encapsulation? |---------+--------------------------------------------> | | Hadmut Danisch | | | <[email protected]> | | | Sent by: Mailing list for | | | discussion of Firewall-1 | | | <[email protected]| | | KPOINT.COM> | | | | | | | | | 05/11/2003 22:40 | | | Please respond to Mailing list | | | for discussion of Firewall-1 | | | | |---------+--------------------------------------------> >---------------------------------------------------------------------------------------------------------------------------| | | | To: [email protected] | | cc: | | Subject: [FW-1] Secureclient from behind SOHO-Router? | >---------------------------------------------------------------------------------------------------------------------------| Hi, the first time contact of a NG-AI SecureClient from behind a SOHO router (i.e. NATting DSL router with dynamically assigned IP Address) fails. It takes some time and the error message is "Communication with gateway ... at site ... failed. A tcpdump shows some traffic between SecureClient and the port 264 of the firewall, then TCP to port 500, and then ISAKMP (UDP to port 500). There's some traffic and then the error message is issued. I guess NAT is causing the problem and Visitor mode would be the solution. But how to start this mode before doing the initial topology download? Hadmut ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= ________________________________________________________________________ This e-mail has been scanned for all viruses by Star Internet. ********************************************************************** Zenith Insurance Management Limited Registered No. 3805632 Registered @ Zenith House, Market Place, Haywards Heath, West Sus, RH16 1DB. NOTICE: This email and any files transmitted with it are confidential and intended solely for the use of the individual or entity to whom they are addressed. If you have received this email in error please notify the [email protected] and delete the message and any attachments accompanying it immediately. ********************************************************************** ________________________________________________________________________ This e-mail has been scanned for all viruses by Star Internet. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|