Not sure this is the right place to post but I have a client whos having issues with Checkpoint secure remote over IOS based firewall. It does connect but seems to timeout. I'm using dynamic NAT so I dont this its a NAT timeout issue. Anyone got experience of this.
Interestingly I can run Netscreen VPN client (also IPSEC) without issue.
I have found the following out about the FW1 client and you may be able to explain what the INSPECT IPSEC firewall rule on this Cisco is not functioning full and how I may resolve this as per original question:
What I have found regarding Checkpoint is that is uses :
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...