CPUG

The Check Point User Group

A Resource For The Check Point Community.  Fast.  Useful.  Independent.

1. CCSA/CCSE One-Week Dual-Certification Training Course with CPUG in San Francisco!
    Courses Starting 12/8, (2009) 1/19, 2/9, 3/9, 4/6, 5/4, 6/8, 7/6, 8/3.
2. Join Us On LinkedIn - We now have a CPUG group.


Go Back   CPUG: The Check Point User Group > Check Point Firewall-1/VPN-1 And Related Products > SecureClient/SecuRemote
Can't Find Client Encrypt Option Can't Find Client Encrypt Option
Register FAQ Members List Calendar Search Today's Posts Mark Forums Read

Reply
 
LinkBack Thread Tools Display Modes
  #1 (permalink)  
Old 2007-11-14
Junior Member
  
Join Date: 2007-11-09
Posts: 13
Rep Power: 0
parlay has an average reputation (10+)
Default Can't Find Client Encrypt Option
Please help urgently, I am trying to get my vpn going and when I try to create the rule for all secureclients to access Encryption domain, there is no option under Action for "Client Encrypt". I have been trying to find this for 3hrs now. Please help!

Thx
Ian
Reply With Quote
  #2 (permalink)  
Old 2007-11-14
Senior Member
  
Join Date: 2006-04-27
Location: Twillight zone
Posts: 465
Rep Power: 3
abusharif has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
that option is only when your policy is in traditional mode. In simplified mode encryption properties are set on the remoteaccess community. Maybe thats the issue you are having?
Reply With Quote
  #3 (permalink)  
Old 2007-11-14
Junior Member
  
Join Date: 2007-11-09
Posts: 13
Rep Power: 0
parlay has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
How do I get into Traditional mode?
Reply With Quote
  #4 (permalink)  
Old 2007-11-14
Senior Member
  
Join Date: 2006-04-27
Location: Twillight zone
Posts: 465
Rep Power: 3
abusharif has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
Quote:
Originally Posted by parlay View Post
How do I get into Traditional mode?
which version of checkpoint are you running? You can afaik only convert from traditional -> simplified, not the other way around. So if you want, for some reason(?) traditional you will have to create new policy from scratch.

Why would you like to run traditional mode anyway?
Reply With Quote
  #5 (permalink)  
Old 2007-11-14
Junior Member
  
Join Date: 2007-11-09
Posts: 13
Rep Power: 0
parlay has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
I am running NG FP3. Basically last nite I had to re-build my firewall from scratch! so I copied all the rules exactly the same but as I said below when I tried the vpn rule, the Client Encrypt is not available under Action. We use SecureRemote to connect to vpn.
Reply With Quote
  #6 (permalink)  
Old 2007-11-14
Senior Member
  
Join Date: 2006-04-27
Location: Twillight zone
Posts: 465
Rep Power: 3
abusharif has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
Quote:
Originally Posted by parlay View Post
I am running NG FP3. Basically last nite I had to re-build my firewall from scratch! so I copied all the rules exactly the same but as I said below when I tried the vpn rule, the Client Encrypt is not available under Action. We use SecureRemote to connect to vpn.
Ah i see.

Well basically from the menu in smart dashboard (FILE->NEW) create new security policy and choose Traditional. Recreate your rules and you'll be fine.

good luck


edit: also make sure that you have "VPN" checked on the gateway object in the list of available features
Reply With Quote
  #7 (permalink)  
Old 2007-11-14
Junior Member
  
Join Date: 2007-11-09
Posts: 13
Rep Power: 0
parlay has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
Thanks a lot for your help!
Reply With Quote
  #8 (permalink)  
Old 2007-11-14
Junior Member
  
Join Date: 2007-11-09
Posts: 13
Rep Power: 0
parlay has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
Hey Abusharif, have you ever seen this error?

FW1: ndis_allocate_packet: Cannot allocate new packets

I keep getting a rash of them at one time then my FW stops responding and I have to reboot to get it back.

please let me know. thx
Reply With Quote
  #9 (permalink)  
Old 2007-11-15
Senior Member
  
Join Date: 2006-04-27
Location: Twillight zone
Posts: 465
Rep Power: 3
abusharif has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
Quote:
Originally Posted by parlay View Post
Hey Abusharif, have you ever seen this error?

FW1: ndis_allocate_packet: Cannot allocate new packets

I keep getting a rash of them at one time then my FW stops responding and I have to reboot to get it back.

please let me know. thx
Are you running your firewall on windows?
See KB article on checkpoint sk25392
Reply With Quote
  #10 (permalink)  
Old 2007-11-15
Junior Member
  
Join Date: 2007-11-09
Posts: 13
Rep Power: 0
parlay has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
When I do a search for that article, it comes up with nothing. could you post it for me? and yes I am running Windows
Reply With Quote
  #11 (permalink)  
Old 2007-11-15
Junior Member
  
Join Date: 2007-11-09
Posts: 13
Rep Power: 0
parlay has an average reputation (10+)
Default Re: Can't Find Client Encrypt Option
Anyone have any ideas?
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are Off
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


All times are GMT -7. The time now is 14:50.

Contact Us - CPUG Home Page - Archive - Top

Powered by vBulletin® Version 3.7.4
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO 3.2.0