Yup.
The DES version issue has bitten me before.
Other things I have seen that cause it to fail as well: If the DNS server
defined on a NT firewall is unavailable, - YMMV on that one ;)...
Also, periodically I will see these errors in the event logs:
The application, WIN32/fw_Strong.exe, generated an application error The
error occurred on 8/20/2001 @ 1:34: 2.375 The exception generated was
c0000096 at address 01231a40 (<nosymbols>)
8/20/01 1:38:24 AM FireWall-1 Error None 1 N/A
FireWall-1: InvokeIsakmpServer: can't bind to UDP socket, port: 500:
Incorrect function.
Again, Failure (Duh!) I havent seen an authoritative answer to this
particular issue however.
Andy David
J Muller International
-----Original Message-----
From: Fowler, Gary [mailto:[EMAIL PROTECTED]]
Sent: Sunday, August 26, 2001 1:39 PM
To: '[EMAIL PROTECTED]'; [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: [FW1] Secure Remote doesn't perform authentication
There are multiple reasons this behavior can be observed.
Some include:
. SecuRemote is out of sync with firewall type; DES client with 3DES
firewall
. Use of Cluster Object with client behind NATing device
. SecuRemote rule is low on the Policy, and Client is behind NATing device;
response is not encrypted (ICMP)
. ISP is filtering udp 500 and/or IP protocols 50 and 51
And a few others that don't come to mind at the moment.
Gary Fowler
National Business Group
-----Original Message-----
From: Rui Ribeiro [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, August 22, 2001 1:52 PM
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: [FW1] Secure Remote doesn't perform authentication
Hi folks.
We're having quite of a rough time w/ Secure Remote and FW-1 4.1.
When we're authenticating a client with a Secure remote, after inputting the
user name and password is:
1) clicking in the secure remote icon, it displays the message "Exchanging
keys with a firewall"
2) After a while, i.e. peharps a minute, the machine displays a message box
with the following text "Error: no answer received from a Firewall at site
xxx.x.x.xxx. If the problem persists, please contact your system
administrator.
3) There also aren't any logs of the user login.
The version of the firewall and capabilities are the same as the
SecureRemote client.
The tests via the users and port 259 perform without any trace of problems.
We're also able to syncronize the site in the secureremote icon.
So has somebody any sugestion for this problem?
Thanks in advance,
Rui Ribeiro
_____________________________________________________________
Are you a Techie? Get Your Free Tech Email Address Now! Visit
http://www.TechEmail.com
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
============================================================================
====
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
============================================================================
====
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
