Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi everybody,I'm working on creating a tunnel between an ASA 5505 and a box running Check Point NG/AI. I've set up a couple of other Cisco to Check Point tunnels with this same Check Point peer without any problems. This time however, a SA is never...
Okay guys, here's the situation:I have three sites (sites A, B, and C). There is a site-to-site IPsec tunnel between PIXs from an internal LAN on site A (172.30.10.0 /24) to an internal LAN on site B (192.168.20.0 /24), and another tunnel from site ...
Hi all,I am trying to use TFTP to copy a capture off of a remote PIX to a TFTP server that is located on the HQ private LAN. An IPSec tunnel exists between the two sites, and I have added the outside interface of the remote PIX to the VPN. The serv...
Guys,I plan to use the gigabit uplink on a 2960-48TT to connect the switch to a Catalyst 3548XL. The 3548 will have a 1000-baseT gigabit module installed (WS-G5483. This is going to be an ordinary 1000-baseT uplink - no fiber involved. Is there an...
Hey guys,I just need to make sure that I understand a couple of things correctly. The native VLAN (VLAN1) will not work with a PIX set up for VLAN support through logical interfaces, correct? Does this mean that I simply need to re-assign all of th...
Jorge,My last post was actually the one about the problem being solved, but you'd have to look at the timestamps to notice this. My post about reloading the ASA looks as if it was a later post because it appears at the bottom because it appears at t...
Well, the issue is solved. And, I'm embarrased to say, it was a mismatched key after all. The fellow on the Check Point end had evidently re-entered the key sometime after the tunnel had origanlly come up, and mistyped it. Even though he was readi...
I'm running 7.2(2). I just reloaded the ASA, and there's been no change. The Check Point box holds a key position in our production environment, so it cannot be rebooted during business hours. We may rebuild the Check Point config to see if that w...
The Check Point engineer on the other end swears that nothing has changed. We verified the ISAKMP settings (again) immediately prior to my last post.I agree that tunnels don't usually go down on their own - that's why this is so perplexing. Here's ...
