[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] RE: [FW1] User@any with client encrypt VS workstation with accept
Hey..thanks for the reply...
1. Policy Properties - Security Policty
--
Apply Gateway Rules to Interface
Direction... I have tried both Eitherbound or Inbound - neither seem
to be working
TCP Session Timeout
3600
Accept UDP Replies - 40 second
timeout
Enable Decryption on Accept
(checked)
I unchecked all of the implied
rules, as none SEEMED (unless I'm wrong) to be necessary...(ICMP... I
basically understand that... so we can drop that
part... thanks...) I also have tried all of this
(Scenario 1 vs. 2) with all of the implied rules checked, just to make sure I
wasn't missing anything, and it didn't seem to make a
difference.
2. ESP ? and AH ? in English please ? ;-)
.....
The
Client VPN rule is preceeded only by
FW-Admins -----> firewall -------
FireWall1 Service Group------- Accept
Any
------------> firewall --------- IKE and RDP -------- Accept
Any
----------> DNSServer ---------DNS
-----------Accept
Any
----------> WebServer ---------http and https
------------Accept
then
my vpn rule
username@any -----------> enc.domain network
--------- Any service ----Client Encrypt
(which is of course still failing)
Hopefully something from #1 will tell you something
that may help ... otherwise... let me know what ESP and AH ? and I'll answer
that one...
Thanks
for the help
Jason
-----Original Message-----
From: CryptoTech [mailto:[email protected]] Sent: Saturday, November 11, 2000 6:06 AM To: Jason Kent Cc: [email protected] Subject: Re: [FW1] User@any with client encrypt VS workstation with accept Jason,
|