The HIDE-NAT is what's causing the problem. Currently the Nortel client
does not support HIDE-NAT, only static NAT.
Nortel says it will have a client that supports HIDE-NAT by 4th quarter
this year.
Tim
------------------------------
Date: Tue, 27 Jun 2000 08:10:28 -0500
From: "Oliva, Fabian J [Sprint]" <[EMAIL PROTECTED]>
Subject: [FW1] Setting up Client IKE/IPSEC VPN to a Nortel Box through FW-1
Hello all,
Im trying to configure (if possible) my firewall to allow a internal user
to
establish a Nortel Extranet VPN session through my FW-1.
I have some documentation that says to configure these 3 ports:
UDP 500 for IKE Key Management
IP Protocol 50 for IPSEC Payload Encryption
IP Protocol 51 for IPSEC Authentication Header
What is the syntax for configuring the two IP Protocols?
Also the users is on a private address space that is configured HIDE-NAT to
the Internet.
Would I have to configure static NAT for this to work?
Thanks in advance for everyones help,
Fabian J. Oliva
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
