Search results for query: *

Scenario (assumption): >Your Client is connected to an ADSL gateway. >You use the public IP address of the gateway outside interface for traffic from the client over the internet (NAT). > You use data integrity check for your vpn connection? In that case the tunnel will be established but the...

Last year I asked Check Point itself and a lot of specialists for advices. The result was "Don´t upgrade - make a new setup". That is not the fastest way but the most secure to get a running system.

IP Protocol 50 is ESP. IKE is not a protocol. It is a mechanism. Why using FWZ? FWZ was removed from CheckPoint itself in the new versions of NG. I don´t know any advantage of FWZ over IPSec and it´s protocols. Regards, Steffen

Hi, I guess you have only one public IP address that you assigned to the outside interface of the PIX. Another possibility is a dynamic assignment of the public IP address assigned by your provider. All client IP addresses (private) behind the PIX inside interface will be translated to this...

Hi Yizhar, A colleague of work detected this phenomenon. As he told me the configuration will change. A reboot doesn´t work - but I´m not absolutely sure. I will ask him if there is anything helpfull to do. The effects are predictable. With no ISAKMP policy you can`t get a successfull phase-1...

Hi Folks, during testing the new PIX software version 6.3(1) we detected a bug in the software. If you are using IPSec VPN´s with ISAKMP it may be that the system will delete your ISAKMP policies. We found this phenomenon after upgrading allreday running PIX Firewalls. Regards, Steffen

You don´t need to install FP1 at first an then FP2 you can directly upgrade from NG (5.0) to FP2. It´s a full upgrade. But be aware that you can´t convert your 4.1 datas directly to NG FP2. It´s only supported by NG or NG FP1. Greetz, Steffen