We switched from Nokia IPSO to SecurePlatform R62 this weekend and had some problems with WAN connection across the new firewall.
This is all internal traffic that traverses a Cisco point to point IP encrypted GRE tunnel: Internet -- PIX -- DMZ -- Check Point -- Remote LAN -- WAN -- Local LAN -- Check Point -- DMZ -- PIX -- Internet Connections from the Remote LAN to the Local DMZ where established, but when the web server tried sending data, it was getting dropped somewhere. We enable fragmentation on the WAN connection and that seems to have fixed the problem, but I'm not sure why the Check Point was discovering the correct MTU/MSS size. Any ideas? Thanks! Ben ----------------------------------------- The information contained in this email is confidential and is intended solely for the use of the person identified and intended as the recipient. If you are not the intended recipient, any disclosure, copying, distribution, or taking of any action in reliance on the contents is prohibited. If you receive this message in error, contact the sender immediately and delete it from your computer. Personal e-mails are restricted by PSECU policy. As such, PSECU specifically disclaims any responsibility or liability for any personal information or opinions of the author expressed in this email. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
