Hi Joe, You will need to create an Interoperable Device and check the "Dynamic Address" on the Interoperable Device properties windows. But more important, you will need a digital certificate, since pre-shared key cannot be defined on VPNs with externally managed (and that include non Check Point gateways) DAIP gateways. The certificate the that the Interoperable Device will use for authentication purpose must be defined on the Interoperable Device properties windows under "VPN > Matching Criteria..." You will also need to specify the DN for this certificate.
I hope this info helps... _______________________________ Gustavo Ríos P. Network Security Engineer email: [email protected] www.cybertechprojects.com Telf.: +58 212 266 1980/ 2503 Cel: +58 412 801 4879 Fax: +58 212 266 9995 ****************************************************** NOTA CONFIDENCIAL: La información contenida en este E-mail es confidencial y sólo puede ser utilizada por la persona o la compañía a la cual está dirigido y/o por el emisor. Si no es el receptor autorizado, cualquier retención, difusión, distribución o copia de este mensaje es prohibida y será sancionada por la ley. Si por error recibe este mensaje, favor devolverlo y borrar el mensaje recibido inmediatamente. CONFIDENTIAL NOTE: The information in this E-mail is intended to be confidential and only for use of the individual or entity to whom it is addressed and/or the issuer. If you are not the intended recipient, any retention, dissemination, distribution or copying of this message is strictly prohibited and sanctioned by law. If you receive this message by error, please immediately send it back and delete the message received. -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[email protected]] On Behalf Of Joe Sent: Miércoles, 09 de Diciembre de 2009 04:58 p.m. To: [email protected] Subject: [FW-1] Checkpoint to non Checkpoint site to site VPN using a dynamic IP I would like to know if somebody was able successfully to establish a site to site VPN connection between a Checkpoint R65 and a non Checkpoint device using a dynamic IP? The documentation seems not be helpful here. Thanks Jo __________________________________________________________________ Looking for the perfect gift? Give the gift of Flickr! http://www.flickr.com/gift/ Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
