Owen,
Check to see if the settings are such: Create a rule on the firewall like this: corp_network/edge device --> edge device/corp network --> allowed protos --> encrypt My encrypt rules from above show: 3DES-SHA1-Group2 The interoperable device is set up like this: 3DES-MD5-Group 2 This is how I do it through traditional mode rather than simplified. Hope this helps. If you need more help, email me offline and I can help you. matt -----Original Message----- From: Mailing list for discussion of Firewall-1 [mailto:[EMAIL PROTECTED] On Behalf Of Owen Hargreaves Sent: Tuesday, July 13, 2004 12:58 AM To: [EMAIL PROTECTED] Subject: [FW-1] Edge X appliance error - IKE: Main Mode Missing IKE configuration for peer (authentication or encryption or hash) Hi guys, I am getting the following error when trying to get my vpn-1 edge appliance to work under site to site mode. Does anybody know where I have gone wrong? Number: 47053 Date: 13Jul2004 Time: 15:35:36 Product: VPN-1 & FireWall-1 Interface: daemon Origin: fw (x.x.x.x) Type: Log Action: Key Install Source: fw (x.x.x.x) Destination: (xx.xx.xx.xx) Encryption Scheme: IKE VPN Peer Gateway: (xx.xx.xx.xx) IKE Initiator Cookie: add4e572191dbb39 Information: IKE: Main Mode Sent Notification to Peer: no proposal chosen Number: 47052 Date: 13Jul2004 Time: 15:35:36 Product: VPN-1 & FireWall-1 Interface: daemon Origin: fw (x.x.x.x) Type: Log Action: Reject Reject Reason: IKE failure Source: (xx.xx.xx.xx) Destination: fw (xx.xx.xx.xx) Encryption Scheme: IKE VPN Peer Gateway: (xx.xx.xx.xx) Information: IKE: Main Mode Missing IKE configuration for peer (authentication or encryption or hash) ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
