Hi pete, Ans 1: All services are accepted which include (udp 389, tcp 389, udp 53, tcp 135, tcp 445, tcp 1026, udp 88)
Ans 2: NO Ans 3: YES Ans 4: We already upgraded the firmware to 4.5.44 (But still have same problem) Thank you for your kind attention. Kingsley -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Peter Goodridge Sent: Wednesday, October 06, 2004 9:35 PM To: [EMAIL PROTECTED] Subject: Re: [FW-1] Site to site vpn between FP3 firewall module and VPN-1 Edge X-series Kingsley, Not a big Windows guy so I'll ask some generic VPN questions. Couple of things: 1. What does the log say about the traffic? Are you seeing other traffic passing though? 2. Are you managing the vpn up on the edge box or from a management station? 3. Does the Edge box show the tunnel up. 4. Can you upgrade the firmware to 4.5.x? If you do make sure you have a copy of the 4.0.x firmware. Therer are problems connecting to manaqgement stations with 4.5, but the VPN works better. HTH Pete Goodridge --- Kingsley Chu <[EMAIL PROTECTED]> wrote: > Dear All, > > Background: > - we had setup a vpn tunnel between FP3 > firewall module(windows > platform) and VPN-1 Edge X-Series(firmware: 4.0.73x) > - One "windows 2000 AD server" behind VPN-1 > Edge X-Series > - One "windows 2000 standalone server" > behind FP3 firewall > module (windows platform) > > Problem: > - We want promote the "win2k standalone > server" to additional > domain controller (BDC), but the process will > terminated when > "configuring the server account". So it can't be > promoted to BDC. [[ > It will be succeed if this standalone server as a > member server]] > > > Question: > Anybody know how to fix it? > > > Remark: > All services were allowed in this vpn tunnel, so > nothing service drop > when promoting in progress. > > With many thanks, > Kingsley > > > ================================================= > To set vacation, Out-Of-Office, or away messages, > send an email to [EMAIL PROTECTED] > in the BODY of the email add: > set fw-1-mailinglist nomail > ================================================= > To unsubscribe from this mailing list, > please see the instructions at > http://www.checkpoint.com/services/mailing.html > ================================================= > If you have any questions on how to change your > subscription options, email > [EMAIL PROTECTED] > ================================================= > __________________________________ Do you Yahoo!? Yahoo! Mail Address AutoComplete - You start. We finish. http://promotions.yahoo.com/new_mail ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
