Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Help needed to setup a VPN tunnel through Checkpoint Firewall

I have the below configuration

<1760 Router> - Internet - <F/W> - <1800 Router>

The 1760 has a public ip address, the firewall is nating a Public IP to a Private on the 1800. I am unable to create a session between the 2 routers, I know the config is correct because if I put the router on Public address it works.

Is there an issue with Checkpoint F/W with VPN pass through? I have asked that IP 50 & 51 and TCP 10,000 UDP 500 & 4500 are abled and translated on the Firewall.

Many thanks in advance

2 REPLIES
Silver

Re: Help needed to setup a VPN tunnel through Checkpoint Firewal

To my knowledge , you can create a tunnel between the router using the public ip address. If by chance you can move the firewall behind the 1800 router and filter the input and outgoing traffic in it.

Silver

Re: Help needed to setup a VPN tunnel through Checkpoint Firewal

Hi,

The problem may be an address missing from the encryption domains. If you are using NAT then you have to include real and translated addresses.

The document at

http://secureknowledge.checkpoint.com/kb/docs/public/firewall1/ng/pdf/10-to-10_net_using_VPN_and_NAT_NG_and_41.pdf

may give you some hints.

HTH

Cathy

195
Views
0
Helpful
2
Replies
CreatePlease login to create content