|
Posted by Dataway on July 28, 2006, 3:54 pm
If you were Registered and logged in, you could reply and use other advanced thread options
I work for Dataway, Inc. We are a network security firm, and partnered
with both Check Point and Cisco. We have extensive experience with
VPN's on both and between both. If you would like assistance with
this, I can help you. Please feel free to give me a call at
415.659.1720 to discuss.
Best Regards,
Jason
andipfaff wrote:
> Hi,
>
> today we tried to solve a problem with a Checkpoint VPN client behind a
> Cisco ADSL router with access list on the WAN interface. I had to open
> ALL UDP ports, because the VPN client sends encrypted data not with ESP
> like expecte but with UDP packets with random port numbers. There is a
> way to configure NAT traversal etc. but in fact this affects just the
> ISAKMP encryption. Doing the same on the Cisco VPN client does what I
> want: ISAKMP alway with UDP 500/500, data via ESP, UDP 4500 or TCP
> 10000 (depending on the settings).
>
> Is there a way to send encrypted data with ESP on the checkpoint
> client? I am not willing to let open all the incoming UDP ports!
>
> thanks in advance
> Andi
| 
XML site map