RE: VPN between Cisco and Checkpoint.

From: Edward Taggart (etaggart@xxxxxxxxxxxx)
Date: Fri Oct 13 2000 - 19:11:41 GMT-3

• Next message: Tony Olzak: "Re: ISDN staying up!!!"
• Previous message: Steve Clubb: "RE: ISDN staying up!!!"
• Maybe in reply to: Price, Jamie: "RE: VPN between Cisco and Checkpoint."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
   
    Title: RE: VPN between Cisco and Checkpoint.
    
   Check your version of Checkpoint. I tried a while back with an older
   version of Checkpoint (3.x) which supposedly supported IPSEC but had
   no luck getting the VPN to come up. The other site upgraded to 4.x
   checkpoint and it came right up. I am running 5.1(2) on our PIX..
   
   Ed Taggart, CCIE# 5318
   
   -----Original Message-----
   From: nobody@groupstudy.com [mailto:nobody@groupstudy.com]On Behalf Of
   Price, Jamie
   Sent: Friday, October 13, 2000 12:25 PM
   To: 'sgupta22@csc.com '; 'ccielab@groupstudy.com '
   Subject: RE: VPN between Cisco and Checkpoint.
   
     I took part in setting up a VPN between a Pix and a Checkpoint a
     little while ago.
     
     I did the config on the Pix and from the Pix perspective there was
     nothing different doing that than a normal Pix to Pix VPN. That is
     there was nothing that needed to be done that isnt on the web
     site.
     
     http://www.cisco.com/warp/public/110/38.html
     
     I had nothing to do with the Checkpoint so I cant comment on that
     but I dont believe the engineer at that end had any issues. Agree
     on transform sets, encryption type, preshared key, peer address,
     etc, and you should be fine.
     
     One thing we did have to alter was the SA timeouts. There was a
     discrepancy between the Pix and Checkpoint settings so after a few
     hours we lost the VPN and couldnt get it to come back up because
     they were both out of whack. Once the SA timeout settings were
     adjusted (we had to adjust the Checkpoint to match the Pix by the
     way - the Pix didnt like having that setting adjusted - it took the
     command but never applied it for some reason) the VPN came up and
     stayed up. That was 2 weeks ago. We havent had to touch the VPN
     since.
     
     Jamie
     
     -----Original Message-----
     From: sgupta22@csc.com
     To: ccielab@groupstudy.com
     Sent: 10/13/00 9:15 AM
     Subject: OT: VPN between Cisco and Checkpoint.
     
     Hi team,
     Has any one of us ever tried implementing a vpn between a cisco and
     a checkpoint. If that is so, could you please send me the working
     config.
     
     -sudhanshu
     

• Next message: Tony Olzak: "Re: ISDN staying up!!!"
• Previous message: Steve Clubb: "RE: ISDN staying up!!!"
• Maybe in reply to: Price, Jamie: "RE: VPN between Cisco and Checkpoint."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:26 GMT-3