On Friday 11 of March 2005 13:49, Kolařík Michal wrote:
> Hi all,
>
> I have just installed Fw-1 vs. VPN-1 Edge VPN.
> Edge is configured as interoperable device ( is not under Smart Server
> management ) Simplyfied VPN, with one comunity - no NAT, no packet filter
> inside VPN. 3des, MD5 for both Phases. DH Goup 2.
>
> According to log, it looks like everything works well.
> I can see VPN tunel is established in Edge web management and I can see
> that traffic is encrypted and decrypted in SmartView Tracker. No errors.
>
> But VPN doesn't work I can't even receive ping reply.
> Only ping from Fw-1 itself works.
>
> One thing, which looks strange for me, on Edge logs in time of Phase 2
> negociation I Can see that External IP adress of the fw-1 box is defined as
> Peers range. There should be defined VPN domain of the FW-1 only, I guess.
> In one packet there is correct VPN domain defined and after few seconds
> there comes another Phase 2 packet where is External IP address of FW-1
> defined as peer range.
What firmware version are you using on the Edge ?
These were several fixes during last several months and this might be the
case.
Regards,
Milon
--
[EMAIL PROTECTED]
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
