VPN failover requires CP 4.1. 4.0 doesn't synchronize encryption keys, so
when failover redirects the encrypted stream from FW-A to FW-B, it's still
encrypted with FW-A's key. To FW-B it looks like garbage and it's thrown
away. With 4.1 this is no longer a problem.
HTH
--
Jack Coates, Rainfinity SE
t: 650-962-5301 m: 650-280-4376
On Tue, 18 Jul 2000, David Wong wrote:
>
> Does anyone have info on having Checkpoint 4.0 failover a Lan to Lan VPN
> (both using Checkpoint/Nokia IP440)? Failover for internet connectivity
> works, but the VPN does not. Can anyone verify whether this can or can not
> be done? Is it a timing issue with ISAKMP?
>
> TIA,
> David
>
>
> ================================================================================
> To unsubscribe from this mailing list, please see the instructions at
> http://www.checkpoint.com/services/mailing.html
> ================================================================================
>
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
