Can't do it. Also because of the ever changing encryption domain, you'll have to constantly modify the encryption properties on the other end point as well, so even if CP could do it, you'd still have the other end point to deal with.
-----Original Message----- From: Mailing list for discussion of Firewall-1 on behalf of Joseph CharlesWalcott Sent: Thu 11/18/2004 7:22 PM To: [EMAIL PROTECTED] Cc: Subject: [FW-1] How do I define Encryption Domain of "ANY" Hello Guys. I am trying to configure my Check Point NG FP3 to do a site-to-site VPN with a Cosine device [similar in setup to a Cisco Pix]. We tested everything and it works fine. However because this device [ the Cosine] will be routing traffic from many [probably over 40] different networks, and new networks will be added all the time, we want to set the encryption domain for the Cosine as "ANY" or "ALL" networks. The admin for the Cosine wants to me to put a entry corresponding to his ACL that would allow all networks access to the tunnel. Can anyone tell me how to define such a network with Check Point. I already tried defining a network [0.0.0.0/0.0.0.0] and using it as the encryption domain for the Cosine, it did not work. Any help would be greatly appreciated Regards, Joseph Charles-Walcott Support Analyst, Mobile Technical Services Mobile Information Systems Telecommunication Services of Trinidad & Tobago (TSTT) Office Ph: 868 624-5165; 868 624-6840 Ext 237 Mobile Ph: 868 685-7969 Fax Ph: 868 627-2755 ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] ================================================= ================================================= To set vacation, Out-Of-Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
