RE: Onegate 1000 passing IPSEC traffic through?

["Wigg, Guy G" <GWigg () mail sbic co za>]

I know we once had a similar problem with Secure Remote, we found that the
temp rules the firewall sets up for the remote user are based on the real
client source address, not what your firewall NATs it to, check the logs of
the VPN-1 firewall, I can only assume the secure remote client places the
client's IP address in the packet payload.

Guy
-----Original Message-----
From: Victor [mailto:vrem () pdq net]
Sent: Thursday, January 25, 2001 6:55 AM
To: firewall-wizards () nfr com
Subject: [fw-wiz] Onegate 1000 passing IPSEC traffic through?


Hi All,
I've struck the brick wall of support with Tut Systems' Onegate 1000
box (ex-Freegate).
What I'm trying to do is: several pc's on local lan have Checkpoint
securemote client (latest version 4.1, IKE encryption) installed and they
are
trying to connect to a Firewall-1 server outside on the Internet. They
can obtain/update the keys from the remote server, but the
authentication attempts always fail.
Access to the internet is provided by Onegate 1000 box, and it is performing
NAT service.

I'd like to know if anyone had experience with setting the Onegate box
for passing the IPSEC traffic through, or am I fighting a lost cause?

Best regards,
 Victor                          mailto:vrem () pdq net


_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () nfr com
http://www.nfr.com/mailman/listinfo/firewall-wizards