Search

	display results
words begin exact words any words part

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[FW1] VPN and NAT, a final word

To: "'[email protected]'" <[email protected]>
Subject: [FW1] VPN and NAT, a final word
From: Jeff Blada <[email protected]>
Date: Fri, 27 Apr 2001 17:18:55 -0500
Sender: [email protected]

Thanks for everyones response to my previous postings. We were having
problems setting up a VPN between 2 CP FW v4.1, both firewalls were using
Hide NAT to private subnets. Here are the fix-its that it took to get the
VPN running.

1. We were using Automatic Hide rules instead of Manual Hide rules. We
changed this.

2. We were using an illegal private subnet for one of the networks,
192.168.0.0/24. I don't think CP or NT liked this. Regardless of the mask, I
believe CP still interpeted it as a Class B network.

3. We initially had 2 IP addresses bound to the external interface. One was
the IP address that CP was licensed for, and the other was the IP we were
actually using. We re-registered and applied the license for the proper IP
addresses.

Not sure which one of these was the fix-it, but I'm leaning towards #1.

Thanks again!

Jeff Blada, MCSE, CCNA, CCA
Senior Network Technician
Agility Computer Network Services, L.L.C.================================================================================
     To unsubscribe from this mailing list, please see the instructions at
               http://www.checkpoint.com/services/mailing.html
================================================================================

Prev by Date: Re: [FW1] Secure Remote for Linux/Solaris, Macintosh ????
Next by Date: RE: [FW1] Urgent Help
Previous by thread: [FW1] Error on VPN: " encryption error: Packet is not IPSEC scheme: Manual IPSec "
Next by thread: [FW1] Error: WARNING: cannot get address of host
Index(es):
- Date
- Thread