Total Network Security
Network Security & Management
|
Total Network Security |
Network Security & Management Configuring Gauntlet VPN & Checkpoint's Firewall-1 Ver 4 |
PRODUCT: Gauntlet NT AFFECTED VERSION (S): 5.5
Creation:04/10/2000
SUMMARY
This document illustrates the step by step VPN ( Virtual Private Network ) Tunnel configuration between Checkpoint Firewall1 and Gauntlet 5.5.
Gauntlet Systems Requirement
Configure Gauntlet5.5
Checkpoint System Requirement
Configure Checkpoint Firewall1 v4.1
There are minimum system requirements that must be met to install and use Gauntlet, Which includes virtual Private Network ( VPN. The Minimum system requirements are as follows:
| Gauntlet VPN ( v5.5, Sp1 & Hotfix A) | |
| System Requirements | |
| Operating systems | Microsoft
Windows NT 4.0 (SP6a) |
| Disk space | 512 Mb |
| 233 MHz Pentium II Processor | 128 Mb Ram |
| At Leat Two Network interface Cards | Fast Ethernet |
| CD-ROM Drive for Installation | |
Add a VPN LINK for Gauntlet and Checkpoint Firewall.
Start, Gauntlet Firewall Manager Then click VPN Tab and click Add Link As shown in the below attached Screen Shot.
Define The Remote Network Properties, I.e ( Security Gateway and the Remote Network's IP Address )
Security Gateway should be the Other Firewall, In our Scenario Firewall1 ( 161.69.56.XX ) and the IP Address field reffers to the Trusted Network of the Other side of the Firewall.( 192.168.1.X )
Define the IKE Properties.
Fill in the Phase I SA Fields:-
Encryption : Triple DES, Hash : MD5 , Authentication Pre-shared Secret, Phase I LIfetime: 480 ( Min ) , DH Group ( 1024 Bit )
Fill in the Phase I I SA Fields:-
Encryption : Triple DES, Authentication HMAC MD5, PFS: OFF, Phase I I Lifetime 480 ( Min ).
Click < Finish > and Complete setting up the Link at Gauntlet Side. it should look like below attached Screen Shot.
Checkpoint System Requirement
|
Check Point FireWall-1 (v4.1, SP 1) |
|
| System Requirements | |
| Operating systems | Microsoft
Windows NT 4.0 (SP3 & SP4) |
| Disk space | 40mb |
| G U I Client | 32mb |
| Network interface | Fast Ethernet |
For More detailed System Requirements, Please follow the below link and check out at their website.
http://www.checkpoint.com/products/firewall-1/sysrequire.html
Step 1
Add a Workstation Object for the Checkpoint Firewall.
Run, Security Policy GUI Program. Then Select, Manage -> Network Objects... Click New ( Workstation )
Define the Interface and Network For Spoofing Protection.
Add a network Object for the private network which is behind Checkpoint Firewall1
Select, Manage -> Network Objects... Click New ( Network )
Set the ISAKMP Properties of Chekcpoint Firewall1
Define the Private network,which should use the ISAKMP/OAKLEY Encryption
Configure a New Workstation Object for Gauntlet 5.5 in Checkpoint.
2. Add a Network Object for the private network which is behind Gauntlet Firewall1
The Final network Objects should look like Below.
Add a rule which will allow both the respective private networks to communicate over Encryption. The final rule should look this.
CAUTIONS
MORE
INFORMATION