When configuring CA and DH keys for encryption
where the Firewall module and management station are seperated, you must define
a Network Object for the Firewall, then select it as a Management Station, then
generate the CA in the Encryption properties for the Management console object.
Once that is done, the only thing left is to go
into the Network Object that represents your Firewall Module, and generate the
DH key.
-=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=- Larry Pingree Sr.
Security Consultant Email: [email protected]
SiegeWorks Company WebSite: http://www.siegeworks.com/Security
Installation, Training and
Consulting -=-=-=-=-=-=-=-=-=-=--=-=-=-=-=-=-=-=-=-=-
----- Original Message -----
Sent: Tuesday, June 26, 2001 8:51
AM
Subject: [FW1] dh key asked for the
management station?
Hi all
Version 4.1, sp2 , nt server with 1 gyga ram,
SKIP encryption; when defining a vpn with two separate machines on the
opposite side, I get first correctly the ca key from the remote management
station, but when hitting ok to go to the dh key for the firewall gateway, a
message appears indicating that I have to define a dh key for the management
station and it does not let me go on.
This never happened on version
4.0. If I try to get this dh key from the remote management station, an error
appears indicating that the management station does not have a dh key for the
management station, as it is logical.
anyone suffering
this?
best regards
jesus
calvo
------------------------------------------------------------------ This
email is confidential and intended solely for the use of the individual to
whom it is addressed. Any views or opinions presented are solely those of the
author and do not necessarily represent those of SchlumbergerSema. If you
are not the intended recipient, be advised that you have received this email
in error and that any use, dissemination, forwarding, printing, or copying of
this email is strictly
prohibited. ------------------------------------------------------------------
Hi all
Version 4.1, sp2 , nt server with 1 gyga ram,
SKIP encryption; when defining a vpn with two separate machines on the
opposite side, I get first correctly the ca key from the remote management
station, but when hitting ok to go to the dh key for the firewall gateway, a
message appears indicating that I have to define a dh key for the management
station and it does not let me go on.
This never happened on version 4.0. If I try to
get this dh key from the remote management station, an error appears
indicating that the management station does not have a dh key for the
management station, as it is logical.
anyone suffering this?
best regards
jesus calvo
|