VPN tunnel between Cisco PIX 515E & Checkpoint FW1
We have a site-to-site VPN tunnel setup between two locations one end has Cisco PIX 515E & the remote end is Checkpoint FW1.
Now when I initiate a traffic from the end having Cisco PIX the vpn tunnel does not come up ,but when one tries to generate an interesting traffic from the Checkpoint FW1 end the vpn tunnel comes up & everything works fine.
This problem has started all of sudden.All was working well tilll now.
Do we need to define something to initiate & establish the vpn tunnel when traffic is generated from the network at Cisco PIX end?
or is there any specific settings to be done when establishing vpn with Checkpoint.
Re: VPN tunnel between Cisco PIX 515E & Checkpoint FW1
You say that it just stopped working? Did you upgrade the CP :)
Make sure that UDP 500 and ESP is allowed to the CP from the Pix (depends on what your implied rules are). Then make sure that all the Phase 1 and Phase 2 info matches on the CP - depending on how you are doing VPN's on the CP this info can be in different places *sigh*
I know this isn't a lot of help but this problem is usually always mismatches on lifetimes etc.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...