I am trying to establish a VPN between a Windows 2000 PC and a NG FP3 firewall. Both the firewall and the Windows PC have been configured according to CP KB article sk15390. At this point the connection is failing with the error "encryption failure: Cannot identify peer" which appears in the log viewer (er, SmartView Tracker).
Login completes successfully (reason: Client Encryption: Authenticated by RSA Signature), Main Mode completes successfully (IKE: Main Mode completion.), Quick mode completes successfully (IKE: Quick Mode completion; IKE IDs: host: 167.206.68.2 and host: 192.168.254.212), and then the next message is "encryption failure: Cannot identify peer". On a side note, Traditional mode is being used for the policy. Has anyone been able to get this to work? Does anyone have any insight into this (i.e. gotchas, info missing/in error in the KB article). Regards, Bob Ramsdell Please note that: 1. This e-mail may constitute privileged information. If you are not the intended recipient, you have received this confidential email and any attachments transmitted with it in error and you must not disclose, copy, circulate or in any other way use or rely on this information. 2. E-mails to and from the company are monitored for operational reasons and in accordance with lawful business practices. 3. The contents of this email are those of the individual and do not necessarily represent the views of the company. 4. The company does not conclude contracts by email and all negotiations are subject to contract. 5. The company accepts no responsibility once an e-mail and any attachments is sent. http://www.activis.com This annotation was added by the e-scan service. http://www.activis.com ---------------------------------------------------------------------------------- This message has been checked for all known viruses by e:)scan. For further information please contact [EMAIL PROTECTED] ================================================= To set vacation, Out Of Office, or away messages, send an email to [EMAIL PROTECTED] in the BODY of the email add: set fw-1-mailinglist nomail ================================================= To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ================================================= If you have any questions on how to change your subscription options, email [EMAIL PROTECTED] =================================================
