Hi all. I have run my problem past PhoneBoy's FAQ's without luck, so I thought I'd try this list. Please accept my apologies in advance if I'm asking something that has been asked by every newbie in their first post!
I am having problems getting users authenticated at my fw using ACE authentication. My set up is as follows: external fw: Solaris 2.8 running checkpoint 4.1 with ACE client 3.3 (ACE servers located internally) two external interfaces, three internal (one to dmz, one to internal fw and the third to my VPN server) I have a rule that ANY to access the two external interfaces (in the rule as a group) via the service FW1_clntauth_telnet. Immediately after we get the Securid OK message, the fw disconnects the session with a "No Client Authentication Rules are available" message. There are two lines in the log for each failed connection. The first one is the accept message from Rule 3 (source-ANY, destination-Extfw, Service-FW1_clntauth_telnet, Action-Accept, Log-Long), the second is a Reject from Rule 0. This second log entry shows my username and lists the origin of the message as the daemon, the service as Unknown, the action Alert, and the destination is blank. Since the error mentions Rule 0 I am presuming that there is a problem with the FW properties and not a particular rule, but if you have any ideas I'd sure love hearing them! Thanks for your help Jason =============================================== To unsubscribe from this mailing list, please see the instructions at http://www.checkpoint.com/services/mailing.html ===============================================
