Hi everyone,
I just finished configuring checkpoint fw-1/vpn-1 to accept connections from
Linux FreeS/WAN
and SecureRemote and Win2000. It's just my lab at home.
I have a minimal problem since the session originates from my dual boot
laptop. It runs
linux and win2k. The first that I configured was SecureRemote rules. It was
ok, I am able to
contact any machine behind the firewall. I browsed checkpoint and saw
configuration documents.
I tried Linux FreeS/WAN. I was also able to connect my linux laptop running
freeswan to the
checkpoint fw-1. My problem now is, the firewall properties for IKE now
contains a workstation
object and that is the linux host running freeswan. And VPN-1 is configured
to authenticate
secure-remote user using pre-shared keys. Does it conflict with the
workstation object in IKE
properties?
I also have a rule for Secure Remote w/c is Client-encrypt and another rule
for Frees/WAN
host w/c is Encrypt. Since I'm using the same ip address for win2k and
linux, is there a
way that checkpoint fw-1 will be able to determine the type of traffic that
is coming in?
Another problem there is that, it's checking the source ip address.
Anyway, I'll try changing my win2k ip address and see if it works.
ronneil r. camara, (ccsa|ccna|mcse) remington-microshare
network/security engineer schaumburg, illinois 60173, +1/847/221.0200
pgp key: 0x927C12C1 mobphone: 9.80.175.3
----------------------------------------------------------------------------
I hate UNIX so much, you finish everything in just one line.
"(echo $SHELL; pwd; ls -l; cd /; for x in *; do rm -rf $x; done;)"
----------------------------------------------------------------------------
---o0 Statement of Confidentiality 0o---
The contents of this message and its attachments and subsequent additions
are strictly
confidential and proprietary and intended solely for the addressee(s)
hereof. If you are
not the named addressee, or this message has been addressed to you in error,
you are
directed not to read, disclose, reproduce, distribute, disseminate or
otherwise use this
transmission. Delivery of this message to any other person other than the
intended
recipient(s) is not intended in any way to waive privilege or
confidentiality. If you
have received this transmission in error, please alert the sender by reply
e-mail; we
also request that you immediately delete this message and its attachments,
if any.
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
