Configuring SecureClient with CP NG FP2

[Atomic]

I think I need to go back to basics. I'm doing something fundamentally very wrong and just can't figure out exactly what.....?

I have just relicenced the Firewall to include VPN. It has been running as a basic Firewall for about 12 months.

The Network is very simple WAN <FIREWALL> LAN

I have downloaded the SecureClient software from CP and installed this on one laptop, currently located on the LAN.

I have enabled SecureClient Policy Server on the Firewall for User Group FW-USERS.

I have now managed to enable IKE encryption..

I amtrying to get the local PC to connect on the LAN to exchange certificates.

I have added one rule in the Standard Rulebase

FW-USERS any any any Client_Auth Log

I can telnet (259) onto the firewall and log-in and authenticate OK as a user in the FW-USERS group.

However, from SecureClient, when I try and setup the site, I get past the Username/Password Dialogue, the dialogue box reports getting data from site and then times out with Error: Communication with Gateway failed.

I have also set up two inbound and one outbound rules in the Desktop Security Rulebase

These allow the FW-USERS group unlimited inbound/outbound access with no encryption and with encryption.

What I am unable to do at the moment is select Client Encryption from the Action field for some reason.

Thanks for reading this...

Martyn

 

[moonlight1]

try to replace the rule which you've mention for this one :
src dest service IF-VIA action
FW-USERS any any Community accept/client auth

define the community first in the Smart Dashboard VPN tag and dont forget to insert the FW-USERS group to the &quot;participant user group&quot; filed at the &quot;edit community&quot; option.
install policy and try again.