Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

checkpoint SecuRemote/SecuRClient passing traffic through PIX525

Hi,

I'm in the process of configuring a PIX 525 to allow a checkpoint SecuRClient (inside) to initiate a vpn tunnel to a SecuRemote server (via Outside).

I have configured ACL's to allow UDP isakmp, esp and ah (both on the inside and the outside interfaces. Using the 'sh access-list' command after trying to initiate a vpn connect these ACL's are showing hits (htcnt=0).

All inside addresses will be PAT'd to a public address. Apart from ACL's to allow isakmp, esp and ah. Is there any other parameters I need to configure to allow this traffic through the PIX??.

thanks

2 REPLIES
New Member

Re: checkpoint SecuRemote/SecuRClient passing traffic through PI

do you have static nat to the computer in the inside interface, beside acl?

New Member

Re: checkpoint SecuRemote/SecuRClient passing traffic through PI

Hi,

No there isn't a static map for this computer on the inside. If successfull, using checkpoint securclient software on the inside will be implemented to many may users, therefore using PAT for global translations is more cost effective.

114
Views
0
Helpful
2
Replies
CreatePlease login to create content