Group:
Im setting up a VPN with a checkpoint VRRP cluster running NG FP3 and a netscreen 25 running 5.0.0r8.0 in NAT / ROUTED mode.
In a nutshell, I am able to get to the checkpoint internal side throught the VPN, however they are not able to get to the netscreen side.
Im getting these messages in the event log (on the NS25):
Rejected an IKE packet on ethernet1 from AA.AA.AA.AA:500 to BB.BB.BB.BB :500 with cookies XYZ and XYZ because the peer sent a proxy ID that did not match the one in the SA config.
IKE<AA.AA.AA.AA> Phase 2 msg ID <XYZ>: Negotiations have failed.
I have experience with checkpoint, and I know NG fp3 has a lot of issues, however Im not admin'ing these units. The admin is saying they are not having any other issues.
Any ideas?
-Rob
-- This message has been scanned for viruses and dangerous content, and is believed to be clean.
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
