Neil Kemp wrote: > Good Morning All > > I have a customer with the following environment. > > > SmartCenter server running on an internal IP address, 2 * Nokia > Firewalls in > an HA Pair (VRRP / IPSO Clustering (tried both)) which are working fine. > > They need the management station to manage a third Nokia in another > location > across the Internet. The problem we have is when they try and communicate > for logs and VPN we get no logs appear in the smartview tracker, and also > VPN's wont establish, saying no response from peer. > > Whenever we replace the Nokias and just put a splat box in there, > everything > works perfectly. > > Any ideas ? > Hi, just a short question: Is SIC established between the SmartCenter and the Firewall? If not, there is no trust between the SmartCenter and the Nokia box, so no logging or VPN will work. SIC is machine specific, so it could be that there is a SIC with the SPlat box. If you exchange it with the Nokia, SIC is no more in the state "trusted". You could try to reset SIC in the properties of the Firewall object. If SIC is resetted on the Nokia too and the activation key is the same, it should work. Hope it helps, best regards, Matthias -- AERAsec Network Services and Security GmbH Wagenberger Strasse 1 D-85662 Hohenbrunn, Germany http://www.aerasec.de http://www.fw-1.eu
================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
