Hi. I've set up my SPLAT to use ISP Redundancy feature in Primary/Backup mode. The two links connected to Nokia IP130 with VPN-1/Firewall-1 installed. Splat and Nokia form meshed VPN community and both gateways are internally managed with SmartCenter Server installed on Splat. Dynamic interface resolving feature is activated per gateway. All the traffic between vpn domains is encrypted, BUT the pings, generated by Splat to check ISP links status, are not. For that reason Nokia drops those packets with the error message "cleartext packets within encrypted connection" thus Splat believes that ISP links are down . If I manually ping the Nokia from Splat pings are encrypted.
Can anyone tell me why that happens ?
Thanks in advance, Andrey.
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
