Anyone still using 4.1? I have set up a few VPNs between SecuRemote clients and FW-1 v4.1. Client and server are configured to use IKE, SHA1, 3DES, etc. The VPN are set up according to the book. I confirmed the configuration in Phoneboy's old "Essential Check Point FW-1" book, too.
The VPNs get created: they exchange keys, authenticate properly, pass Phase 1 and 2, etc. The problem: the client end can't communicate with any nodes in the encryption domain. Logs show any attempt, such as a PING or a TELNET session being dropped by my last rule (any any drop). My FW-1 Client Encrypt rule doesn't seem to be working. I am not using Desktop Security and I do have my FW's object configured by the book and "Exportable for SecuRemote." Besides "Upgrade to NG," do you have any suggestions? TIA and best regards, Moss ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
