Hi Robert,

Secureremote generally works fine with the M1122. I've been using it on an
old M11 for a couple of years now, and I've set up a few M1122's as well.

What version of Checkpoint firewall are you using, and which version of the
client?

If you use UDP encapsulation you shoudn't need ESP, just UDP 2746 and
possibly UDP 500 for ISAKMP key exchange.

On Checkpoint NG you can even use IKE over TCP.

Rgds,
Rob Edkins, Dip. Bus(IS), CISSP
Senior Technical Consultant
Axon Computer Systems Ltd

Robert Hamilton wrote:

> Hi
>
> I have seen a lot of posts in the archives of people trying
> to get this to work .. But no success storys . Is it possible ?
>
> The right track ?
>
> Address (internal) port (internal) port (external) no pts Protocol
>
> 192.168.1.20 - 50 - 50 - 1 - ESP-IPSEC
>
> 192.168.1.20 - 2746 - 2746 - 1- UDP
>
> 192.168.1.20 - 500 - 500 - 1 - UDP
>
> Cheers
>
> Robert
>
>

-- 
The information contained in this e-mail message is intended only for the use of the person or entity to whom it is addressed and may contain information that is CONFIDENTIAL and may be exempt from disclosure under applicable laws. 
If you read this message and are not the addressee you are notified that use, dissemination, distribution, or reproduction of this message is prohibited. If you have received this message in error, please notify us immediately and delete the original message. You should scan this message and any attached files for viruses. 
Axon Computertime accepts no liability for any loss caused either directly or indirectly by a virus arising from the use of this message or any attached file.
-- 
This message is part of the NZ ADSL mailing list. 
see http://unixathome.org/adsl/ for archives, FAQ, 
and various documents. 
To unsubscribe: send mail to majordomo@lists.unixathome.org 
with "unsubscribe adsl" in the body of the message