Rule 0 are the implied rules (you can see this rules
by secting Implied Rules in menu View).
There is a paper (at phoneboy or checkpoint) showing
how to configure a policy server (used for
authentcation with ike methods) otherwise you have to
configure fwz. The procedure to create a policy server
is quite simple, and, in my opnion, much better than
use fwz.
If you want I can send you this paper.
Key
--- Eyal Rif <[EMAIL PROTECTED]> wrote:
>
> Hi,
>
> I have fw4.1 3DES,
>
> I try to configure for remote access but getting
> "Authentication fail" in
> secuRemote client (4.1 sp2 strong), and FW gateway
> log viewer should me the
> problem is rejected at rule 0 (what is rule 0?),
> because of "Refused
> Topology request. Password expired."
> In the user object, it's defined to use "Firewall-1
> Password", and a simple
> password. Encryption is using "IKE".Added to
> VPNusers.
> My policy is using: "VPNusers@Any any any Client
> Encryption ..."
> In client site, the key scheme is using "IKE". I
> get username and password
> query when I "Site->Make New", but after that,
> return only authentication
> fail.
> Does anybody know what's the problem may be?
>
> Thanks,
>
>
>
================================================================================
> To unsubscribe from this mailing list, please
> see the instructions at
>
> http://www.checkpoint.com/services/mailing.html
>
================================================================================
__________________________________________________
Get personalized email addresses from Yahoo! Mail - only $35
a year! http://personal.mail.yahoo.com/
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
