From: Price, Jamie (jprice@xxxxxxxxxxx)
Date: Fri Oct 13 2000 - 13:24:49 GMT-3
Title: RE: VPN between Cisco and Checkpoint.
I took part in setting up a VPN between a Pix and a Checkpoint a
little while ago.
I did the config on the Pix and from the Pix perspective there was
nothing different doing that than a normal Pix to Pix VPN. That is
there was nothing that needed to be done that isnt on the web site.
http://www.cisco.com/warp/public/110/38.html
I had nothing to do with the Checkpoint so I cant comment on that but
I dont believe the engineer at that end had any issues. Agree on
transform sets, encryption type, preshared key, peer address, etc, and
you should be fine.
One thing we did have to alter was the SA timeouts. There was a
discrepancy between the Pix and Checkpoint settings so after a few
hours we lost the VPN and couldnt get it to come back up because they
were both out of whack. Once the SA timeout settings were adjusted
(we had to adjust the Checkpoint to match the Pix by the way - the Pix
didnt like having that setting adjusted - it took the command but
never applied it for some reason) the VPN came up and stayed up. That
was 2 weeks ago. We havent had to touch the VPN since.
Jamie
-----Original Message-----
From: sgupta22@csc.com
To: ccielab@groupstudy.com
Sent: 10/13/00 9:15 AM
Subject: OT: VPN between Cisco and Checkpoint.
Hi team,
Has any one of us ever tried implementing a vpn between a cisco and
a checkpoint. If that is so, could you please send me the working
config.
-sudhanshu
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:26 GMT-3