WatchGuard SOHO VPN to Raptor 6.0/6.5
Patrick Ethier
patrick at SECUREOPS.COM
Tue May 30 14:42:06 EDT 2000
Hi Dave,
Try configuring both sides to not use AH and see what that will do. The
problem might rely on the way that the SOHO does NAT. If it IPsecs and the
NATs then this would explain your problem.
-----Original Message-----
From: Dave Sroelov [mailto:dave at ASCOMPUTER.COM]
Sent: Saturday, May 27, 2000 3:47 PM
To: VPN at SECURITYFOCUS.COM
Subject: WatchGuard SOHO VPN to Raptor 6.0/6.5
dear everyone,
i have a need to connect a watchguard soho to a raptor firewall via the
branch vpn option for the soho. so far, after several hours of playing
with this option, that option, and the other option, i have the two
connected with a live tunnel. however, it does have it's problems, i.e.
half the tunnel doesn't work.
the following happens after the tunnel is up:
1. if i ping from a system on the raptor side to a system on the
watchguard side, the packet goes to the raptor, over the tunnel to the
watchguard, to the system on the other side, and gets there in one
piece. the receiving system sends out a reply packet, which goes to the
watchguard, then to the raptor. but the raptor says it has a bad
checksum and dumps it.
2. if i ping from a system on the watchguard side to a system on the
raptor side, the packet goes to the watchguard, over the tunnel to the
raptor, and the raptor says it has a bad checksum and dumps it.
since the tunnel is up, meaning that the authentication worked, i assume
that the two boxes can talk to each other. but for some reason, when
the watchguard is emcapsulating regular data packets, it is doing
something just a little off center.
any help would be greatly appreciated.
thanks.
dave
VPN is sponsored by SecurityFocus.COM
More information about the VPN
mailing list