Search results for query: *

First things first is you have to have nonat rule for the LAN and DMZ and then depending upon the security level you define you can put the access-list

has Anyone ever configured Cisco pix to configure for two peers for one VPN config? Is it possible to configure the cisco pix to go for standby VPN Device/peer ip, if primary goes down?

09/05/06 14:44 iked[153]: Sending KEEPALIVE_REQUEST message 09/05/06 14:44 iked[153]: TO 70.155.9.187 IF-HDR* -9D4AF50D ISA_HASH ISA_NOTIFY 09/05/06 14:45 kernel: Channel 1 looks dead 09/05/06 14:45 kernel: ipsec: Output SA changing state DYING or DEAD 09/05/06 14:45 iked[153]...

what kind of VPN is it BOVPN or MUVPN?

Hi All, Is ther any juniper producy available for network level access controll for LAN. I.E. When a user connects his laptop to the network port, to get the ip address and the routes on the laptop he needs to authenticate himself. Means the switch port will not come up until the authentication...

if the firebox is blocking the download it will show up in the traffic monitor as well. What error do you get while downloading? have you tried with HTTP filter instead of proxy? Have you tried on machine outside of firebox network?

Trying set the lifetime or key expiration time to either 0 or disable the key expiration feature in phase two properties. If possible post the logs from traffic monitor when the tunnel goes down and comes up. Pankaj

try http://internalipofsoho/debug.htm

Adding a route in Network>>routes is not going to help. You need to add a new tunel chosing the same gateway.go to Policy manager>>Network>>Branch office VPN>>Manual IPSec Click tunnel>>add>>chose the existing gateway used for the VPN>>give this tunnel a diffrent name and say ok Now you come...

Make the appropriate service according to the ports required to access. The add that service to policy manager>>set the incoming to be enabled and allowed should be range as given to you, in the TO field click add>>nat>>external=chose the external ip of the firebox and in internal type the...

post the fb model and software version running.

If you want to pass the PPTP traffic you need to do 1-1 NAT and for that you need any free public ip on external interface and then you can pass incoming traffic to PPTP Server inside. If you want to authenticate using 2003 server then you may have to use RADIUS auth with pptp on firebox. If...

Yes link speed i meant, is what you know. In case of watchguard i have seen lots of these kind of cases. The ports are autosensing(10/100 half/full) but in some case the link speed negotiation fails. So in these case we use a cheep hub to get the link speep working. In the coming Soho edge...

HUB is nothing to do with the MAC.....its just syncing the link speed of WG caz in some cases the external link may not come up caz of this. Rest its ur box....play

put a hub between SOHO and external device.

Go to setup>>authentication and chose appropriate radio and then again click setup>>authentication server and then enter the specific info for the authntication server.

Yeah you need seprate lic ofr each firebox as x500 doesnot come with default license for BOVPN. Here is the link for BOVPN in which you dont require a login. http://www.fireboxsupport.com/manual_ipsec_FB_to_FB.htm

When you open the properties of that NIC card do you see the deterministic network enhancer? If yes then is it enabled? It should be enabled in order to work that correctly. This looks like a problem with the NIC card, you might wanne reinstall the drivers for the same? It may work fine with...

Can you post the logs of MUVPN when it tries to connect. You get the logs windows after right click on safenet icon in sys trey and then click log viewer.

When you generate the WGX file, by default that file has a external ip of the firebox for IPSEC Peer ip. I am really amazed that you see the packets hitting the router from public internet because the firewall has 192.168.x.x ip on external and how you are able to reach that ip? You may need to...