<div>
HI.<br />
<br />
Check the time and date of &nbsp;both boxes (pix and checkpoint) , need to be &nbsp;equal.<br />
<br />
Bye
</div>


HI.

Check the time and date of  both boxes (pix and checkpoint) , need to be  equal.

Bye

<div>
According to Cisco, this means that the ISAKMP keys do not match. Rekey/reset in order to ensure accuracy.
</div>


According to Cisco, this means that the ISAKMP keys do not match. Rekey/reset in order to ensure accuracy.

<div>
<div class="content wysiwyg-content">
Is there a way to setup a VPN tunnel from a PIX to a Checkpoint Firewall (with its external interface running with a private IP address) behind a F5 BigIP that is NATing a Public IP address to the private IP address. &nbsp;<br />
<br />
When debuging I get the following error message:<br />
crypto_isakmp_process_bloc<wbr />k:src:152.<wbr />200.x.x, dest: 129.41.x.x spt:500 dpt:500<br />
ISAKMP: reserved not zero on payload 5!<br />
ISAKMP: malformed payload<br />
<br />
TIA
</div>
</div>


Is there a way to setup a VPN tunnel from a PIX to a Checkpoint Firewall (with its external interface running with a private IP address) behind a F5 BigIP that is NATing a Public IP address to the private IP address.  

When debuging I get the following error message:
crypto_isakmp_process_block:src:152.200.x.x, dest: 129.41.x.x spt:500 dpt:500
ISAKMP: reserved not zero on payload 5!
ISAKMP: malformed payload

TIA

VPN tunnel from PIX to CheckPoint (Behind F5 BigIP)

Software firewalls, also known as host-based firewalls, provide a layer of software on one host that controls network traffic in and out of that single machine. Most operating systems now include firewall software, but many available software firewalls include central distribution, antivirus systems and disaster recovery.

Software Firewalls

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.

Cisco PIX is a dedicated hardware firewall appliance; the Cisco Adaptive Security Appliance (ASA) is a firewall and anti-malware security appliance that provides unified threat management and protection the PIX does not. Other Cisco devices and systems include routers, switches, storage networking, wireless and the software and hardware for PIX Firewall Manager (PFM), PIX Device Manager (PDM) and Adaptive Security Device Manager (ASDM).