hi! well, looks like you have to re-create your internal CA for IKE hybrid... only a tip!
regards Filip Francis wrote: > Hi all, > > > i have done an upgrade from checkpoint 4.1SP5 to NGFP1. > All was going well the VPN are up and running except for ONE and the > secure > remote people. > I have about 3 VPN and the ones going to sonicwalll and netscreen are > running fine they are using DES and 3DES. > The one who is going to a checkpoint firewall doesn't work but i can't > reache the person who i am in contact to see what is in the logs. > But Also the secure remote peoplke are having problems. > If you have authenticated once then you don't have any problem( > authenticated before the upgrade i mean). > If you have a new install then i am getting the following message: > When i try to logon to the policy server then you get this: > Negotiation with gateway X.X.X at site X.X.X.X has failed. > VPN-1 Server could not find any certificate to use for > IKE. > When i go to the logs on the firewall then i see an key install > but also > a drop. > key install > drop 3DES, SHA1 RSA signature. > > And thats all i am getting. > Can anybody help me with this. > Even the support guys here can't find the problem. > > Thanks in advance > Filip > > ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
