Hi all,
I am trying to establish a vpn tunnel with a customer using a linux
box, with racoon ipsec tools installed, as a client. My office
firewall is a CheckPoint NG R55 with HFA16 applied under RH 7.3.
When I try to establish this vpn tunnel with my customer,
SmartTracker returns this error:
"encryption failure: Unknown SPI:0x4d2d... for IPSec packet" and
another line with this error: "encryption failure: Already issued
request for this SPI".
i think that the problem is with NAT rule, defined like a hide NAT:
Internal_Net * * ip_firewall__hide_NAT
.
Linux configuration works ok when i use a vpn-1 edge device as a
firewall.
How can I solve this problem??
Thank you very much.
P.D: My linux workstation is a CentOS 4 with racoon installed.
--
CL Martinez
carlopmart {at} gmail {d0t} com
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to [EMAIL PROTECTED]
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
[EMAIL PROTECTED]
=================================================
