[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [FW-1] Secure remote client
Hi, I am in the process of configuring VPN (SecuRemote) using Checkpoint Firewall-1 NG. We would like to allow our staff to have access to our internal networks via the Internet. I have done the following to configure VPN: 1. Created a VPN user and VPN group using GUI. 2. Under user properties I have the following: Authentication Scheme: VPN-1 & Firewall Password Encryption: IKE is checked (under IKE properties authentication public key is checked, under encryption tab ESP, SHA1 and 3DES enabled) 3. Firewall object: Enabled - exportable for securemote/secureclient Enabled - IKE encryption scheme (VPN-1 & Firewall-1 authentication for secureote and secureclient (Hybrid Mode), public key signatures 4. I have a rule: Any firewall RDP,IKE Accept vpnusergroup@any firewall-encdomain Any ClientEncrypt 5. Installed scuremote client software on a PC. I can connect to the firewall from the internet (dial up user). I can download the site toplogy after that I can't communicate with the encdomain. I get the error "internal authentication error". I would really appreciate it if someone could help me to fix the problem. Thanks a million, Rajesh. Unix System Administrator State Library of NSW Macquire Street Sydney - 2000 Email: [email protected] Ph: 02-92731711 ==================================== This email and any attachments to it are privileged and confidential. If you are not the intended recipient, please notify the sender and delete it. The contents of this email are not given or endorsed by the State Library of New South Wales unless otherwise indicated by an authorised officer of the Library. Copyright law may also apply to this contents of this email. ==================================== ================================================= To set vacation, Out Of Office, or away messages, send an email to [email protected] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [email protected] =================================================
|