[vpn] ProhibitIpSec registry key and NS5

Thierry Blanchard thierry_b at ifrance.com
Wed Dec 5 13:44:23 EST 2001


You're right, I setup NSR to connect to the public IP address of my NS5XP
device.
Then, what should I put to the remote party IP address and should I use a
Remote Gateway Tunnel Ip address?

> -----Original Message-----
> From: Tom McHugh [mailto:TomM at spectrum-systems.com]
> Sent: Wednesday, December 05, 2001 7:24 AM
> To: 'Thierry Blanchard'; VPN (E-mail)
> Subject: RE: [vpn] ProhibitIpSec registry key and NS5
>
>
> NetScreen Remote isn't involved in any L2TP communications.
> It may be that
> your L2TP configuration is set up to connect to your L2TP
> server's external
> IP address.  If that's the case, NSR will never see the
> request for the VPN
> tunnel to be formed.
>
> Hope that helps!
>
> Tom McHugh, Senior Systems Engineer
> mailto:tomm at spectrum-systems.com
>
> Spectrum Systems, Inc.
> "Today's Technology--Solutions for Tomorrow"
>
> 11320 Random Hills Road, Suite 630
> Fairfax, VA 22030-6001
> 703-591-7400 x218
> 703-591-9780 (Fax)
> http://www.spectrum-systems.com/
>
> Concerned about the security of your network?  Spectrum
> Systems' Network
> Security products and services can take the worry out of
> protecting your
> network.  Call us at 800-929-3781 or visit us at
> http://www.spectrum-systems.com to learn more.
>
>
> > -----Original Message-----
> > From: Thierry Blanchard [mailto:thierry_b at ifrance.com]
> > Sent: Tuesday, December 04, 2001 6:53 PM
> > To: VPN (E-mail)
> > Subject: [vpn] ProhibitIpSec registry key and NS5
> >
> >
> >
> > When setting:
> > HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Pa
> > rameters\Prohi
> > bitIpSec = 1
> > my L2TP works but without encryption (no IpSec).
> >
> > When setting:
> > HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\RasMan\Pa
> > rameters\Prohi
> > bitIpSec = 0
> > I have an "Error 678 : There is no answer" on my W2K client.
> > Even if I check "Require Encryption" in the DUN settings, I
> > keep getting the
> > same error.
> > The Log Viewer of my Netscreen-Remote is not logging any
> > activity. The log
> > file on the NS5 firewall is also empy.
> >
> > Any idea?
> >
> > Thanks,
> > Thierry.
> >
> >
> > ______________________________________________________________
> > ________________
> > ifrance.com, l'email gratuit le plus complet de l'Internet !
> > vos emails depuis un navigateur, en POP3, sur Minitel, sur le WAP...
> > http://www.ifrance.com/_reloc/email.emailif
> >
> >
> >
> > VPN is sponsored by SecurityFocus.com
> >

 
______________________________________________________________________________
ifrance.com, l'email gratuit le plus complet de l'Internet !
vos emails depuis un navigateur, en POP3, sur Minitel, sur le WAP...
http://www.ifrance.com/_reloc/email.emailif



VPN is sponsored by SecurityFocus.com





More information about the VPN mailing list