This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Checkpoint SecuRemot 4.1

Hi,

I'm testing ASTARO with Version 4.015 and until now, all works fine, except my Checkpoint SecuRemote 4.1 Client, which I need for accessing the PC's of one of my customers. Can anyone tell me which ports of what protocol (tcp/udp) I have to allow?

Thanks
Hans

This thread was automatically locked due to age.

Parents

0 cyclops over 22 years ago

YALU,

I am not sure if that works through masquerading but udp/500 is needed and ESP. In case of using NAT-Traversal you'd have to open the according udp port instead of ESP (mostly udp/4500).

Greetings
cyclops
Cancel
Vote Up 0 Vote Down

Cancel
0 YALU over 22 years ago in reply to cyclops

Hi cyclops,

I'm a newbee!! Now, I used the TCP_UDP_ALL Service in the rules and looked at the Live Paket filter Log, and I saw when I make a connection with SecuRemote, it uses the Sourceport 3248 to destination port 264 and source 3250 to destination 256 (that's needed for the IKE encryption). In cunjunction with port 500 now it works fine!!

Thanks
Hans
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 YALU over 22 years ago in reply to cyclops

Hi cyclops,

I'm a newbee!! Now, I used the TCP_UDP_ALL Service in the rules and looked at the Live Paket filter Log, and I saw when I make a connection with SecuRemote, it uses the Sourceport 3248 to destination port 264 and source 3250 to destination 256 (that's needed for the IKE encryption). In cunjunction with port 500 now it works fine!!

Thanks
Hans
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data