Andrew,
The difficulty with other client VPN packages is not with the encryption scheme (well not IKE anyway) it is with the topology dowload process. There is no standard mechanism (yet) for downloading the site topology (or for creating a site topology file for that matter). If you can figure out a way to manipulate the topology file(s) you might be able to get another client application to work with the SecuRemote Server (VPN-1).
You would have to be using IKE because FWZ is proprietary to Check Point (and these are the only two encryption schemes supported for user encryption/client to site VPNs).
Coming from a static IP address (ie. a site rather than a client) you can set up a site-to-site VPN using any IPSEC "compliant" package (or even Win2k).
...Hope this helps...
Mike
-----Original Message-----
From: Andrew Tseng [mailto:[EMAIL PROTECTED]]
Sent: Thursday, April 05, 2001 9:36 AM
To: '[EMAIL PROTECTED]'
Subject: Client connection to CheckPiont FW-1
Hi everyone:
I have a question about client VPN connection to Checkpoint FW-1. We
are now using SecuRemote for client to site connection according to
Checkpoint's course material. However, there must be some other VPN clients
that I can use connecting to our FW. Can I use Windows2000 built-in VPN
client or VPN client software which comes with dial-up ISP? What kind of
Authentication and encryption scheme should I configure in FW? Please
comment. Thank you!
Best Regards,
Andrew Tseng
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
