Guys, We are currently faced with an issue that frankly, I'm not sure how to solve.
We have a Check Point firewall at NGX R65 HFA60 running in a distributed environment and one of our customer had a 3rd party execute a PCI scan on the firewall and the results came back with a red flag: "Weak encryption algorithm support detected on ISAKMP/UDP500 service" We have tried just about everything we could configuration wise including limiting support to ONLY 3DES/AES-256 in the Global Properties but a 2nd scan yielded the same results. Have any of you ever encountered this and what would you recommend to make this go away? Thanks Scanned by Check Point Total Security Gateway. ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] ================================================= Scanned by Check Point Total Security Gateway.
