Hi, people:
I am having a problem to establish a site-to-site VPN with a Micronet firewall....jajaja..Micronet this is a great firewall..jeje..!!! this is a U$S 150 solution... Well, the problem seems to be on the second phase, the micronet only have two configurations modes: IKE and MANUAL. In the IKE mode, the options are the following: Encryption Protocol: Null, DES, or 3DES PreShared Key: Key Life: 3600 sec by default IKE Life Time: 28800 sec by default And the MANUAL mode: Incoming SPI: Outgoing SPI: Encryption Protocol: Null, DES, or 3DES Encryption Key: Authentication Protocol: MD5 or SHA-1 Authentication Key: Our configurations is on the IKE mode. I put a "sniffer" between the firewalls, and I saw that the second phase did not establish, but if i change the Checkpoint and put a CISCO firewall, this is CISCO vs MICRONET, and in the CISCO i disable the AH option, this configuration works fine. However from FP2 it only allow the ESP protocol instead of AH. The question is: I must disable the MD5 and SHA-1 parameters, from the VPN properties in the firewall object? Best regards, loop.- ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
