From: Edward Taggart (etaggart@xxxxxxxxx)
Date: Sat Apr 01 2000 - 00:04:33 GMT-3
Ron, I have been working on connecting a PIX 520 (5.1) with a checkpoint 3.x
system and have not successfully gotten it to work yet. The checkpoint
firewall version 3.x does not support ISAKMP for key exchange, however
version 4.x does. Therefore, if you are working with a 3.x checkpoint you
will need to use IPSEC Manual (manual keys). I am at the point where the
PIX is recognizing that a IPSEC IP ESP packet has come in and is checking
the SPI and encryption key. However, I have not had a chance to continue
working on it this week.
If you want to ask me questions offline please e-mail me directly as this is
really off the list subject.
Ed Taggart, CCIE #5318
mailto: etaggart@pivot.net
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
Ron Johnson
Sent: Friday, March 31, 2000 4:05 PM
To: cisco@groupstudy.com
Cc: ccielab@groupstudy.com
Subject: VPN - PIX Firewall to Checkpoint Firewall
Has anyone successfully setup a VPN between a PIX (520 w/ 5.03 Software) and
a checkpoint firewall (NT v. 4.0 w/ SP5)? If so, how difficult was it to get
going? I'm hearing different things about how difficult this is to
configure. Are there any online resources discussing what's involved in
setting this up (I have had no luck finding anything online). The
requirement is to setup a dedicated VPN with a client for extranet access.
I realize this is a bit off topic, but I appreciate your feedback.
Thanks.
-Ron
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:23:07 GMT-3