Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
392
Views
4
Helpful
1
Replies

PIX-CheckPoint Tunnel Troubles

Mark3000
Level 1
Level 1

‎08-26-2004 05:02 AM - edited ‎02-20-2020 11:35 PM

I am trying to build a VPN tunnel based IPSEC/ISAKMP between PIX and CheckPint NG.

The problem is when enabling all IP the tunnel is OK but when enabling only TCP doesn't work.

Any idea or rec ?

0 Helpful
1 Reply 1

michel.mueller
Level 1
Level 1

‎08-26-2004 05:09 PM

Checkpoint does not support negotiation of protocol based SA's. To restrict the traffic in the tunnel to TCP use the "no sysopt connection permit-ipsec" command and attach an access-list to the interface which points to the checkpoint firewall. Allow only TCP from the remote IP's in the access-list.

regards Michel

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card