CPUG

The Check Point User Group

A Resource For The Check Point Community.  Fast.  Useful.  Independent.

1. Come to CPUG CON 2008 EUROPE in Switzerland on September 8th - 9th!
    Two days full of technical content for Check Point administrators in the beautiful Swiss Alps!
    We already have 52 attendees signed up from 14 countries!
2. CCSA/CCSE One-Week Dual-Certification Training Course with CPUG in San Francisco!
    Courses Starting 8/25, 10/6, 11/3, 12/8, (2009) 1/19, 2/9, 3/9, 4/6, 5/4, 6/8, 7/6, 8/3, 9/7.
3. Corrent S3500 SecureXL Turbocards For Sale - Last Six Remaining - Get Your Spares!
4. Join Us On LinkedIn - We now have a CPUG group.


Go Back   CPUG: The Check Point User Group > Check Point Firewall-1/VPN-1 And Related Products > Interoperability
Reload this Page Interoperatability b/w Checkpoint & Cisco Pix
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 2007-11-21
thebull thebull is offline
Junior Member
  
Join Date: 2007-09-24
Posts: 7
Rep Power: 0
thebull has an average reputation (10+)
Default Interoperatability b/w Checkpoint & Cisco Pix
Hi All,

We need your assistance

Issue: VPN Pkts get dropped.

1) A Site-to-Site VPN is established b/w Checkpoint & Cisco PIX.
2) Often the connectvitiy Flaps, i.e. the pkst get dropped.

Error:

Pix: Duplicate pkt on Phase 2

Checkpoint: Virtual defragmentation error: Timeout

When checked in Google, the solution is 'caused to due to jumbo packets traversing thru the tunnel' and need to change the MTU size.

We have S-2-S tunnels with multiple customers and have issue with only one customer and he is asking to change the MTU Size. To my knowledge we can only change MTU for an interface and not for tunnel.

Kindly advice me on this.

Regards,
Thebull.
Reply With Quote
  #2 (permalink)  
Old 2007-11-23
flawless_cowboy flawless_cowboy is offline
Member
  
Join Date: 2005-08-15
Posts: 36
Rep Power: 0
flawless_cowboy has an average reputation (10+)
Default Re: Interoperatability b/w Checkpoint & Cisco Pix
What versions of PIX IOS and Check Point are you using? We have a ton of VPNs to PIX firewall from our Check Point boxes without any major issues, although that was not always the case.
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On



All times are GMT -7. The time now is 07:07.

Contact Us - CPUG Home Page - Archive - Top

Powered by vBulletin® Version 3.7.2
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
LinkBacks Enabled by vBSEO 3.0.0