I have a VPN setup between two NG FP3 Firewall's/VPN,
I am using simplified VPN,
I would like to disable all "implied rules" and allow only the firewall's to communicate between them, and do key exchange (IKE) which is defined in the first rule,
When the implied rules are checked, the VPN key exchange is working fine,
When i remove the emplied rules, and add the first rule (Firewall-A, Firewall-B, to Firewall-A,Firewall-B service IKE , accept, log) the firewall accepts the packet of the key exchange to be encrypted,
What can i do to make it accept un encrypted packets for a specific rule ?
I guess the "IF VIA" colum is for this, but what "community" should i define/use ? what is the All-GwtoGw community ? it has no properties
Thanks
Maraco.
================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
