site to site VPN between Cisco ASA 5520 and checkpoint
Hi All,
I need an urgent help in configuring vpn site to site between asa 5520 and checkpoint FW in another country
Remote county details:
Gateway: 10.10.20.1
Encryption Domain(s): 192.230.230.200
VPN traffic direction ( from my cisco asa 5520 to other country checkpoint )
Source Destination Service
62.62.10.1 192.230.230.200 FTP
Below Configuration parameters sent by checkpoint administrator
Encryption Scheme defined:
Phase 1 Encryption Method: 3DES
Phase 1 Hash Method: MD5
Phase 2 Encryption Method: 3DES
IKE & IPSEC Hash Method: SHA1
DH Group: Diffie Hellman Group 2
Security Association (SA) timers
Renegotiate IKE SA every 64800 seconds ( 18hrs)
Renegotiate IPSEC SA every 3600 seconds
Aggressive Mode: No
Support Perfect forward Secrecy: YES
Shared Secret: ************
Gateway: 62.62.10.1
please advise whats the asa 5520 configuration to be done from my side to connect to their checkpoint, i have tried creating site to site using cisco ASDM but still unable to connect, is there any specific config for checkpoint to work.. please advise
I need an urgent help in configuring vpn site to site between asa 5520 and checkpoint FW in another country
Remote county details:
Gateway: 10.10.20.1
Encryption Domain(s): 192.230.230.200
VPN traffic direction ( from my cisco asa 5520 to other country checkpoint )
Source Destination Service
62.62.10.1 192.230.230.200 FTP
Below Configuration parameters sent by checkpoint administrator
Encryption Scheme defined:
Phase 1 Encryption Method: 3DES
Phase 1 Hash Method: MD5
Phase 2 Encryption Method: 3DES
IKE & IPSEC Hash Method: SHA1
DH Group: Diffie Hellman Group 2
Security Association (SA) timers
Renegotiate IKE SA every 64800 seconds ( 18hrs)
Renegotiate IPSEC SA every 3600 seconds
Aggressive Mode: No
Support Perfect forward Secrecy: YES
Shared Secret: ************
Gateway: 62.62.10.1
please advise whats the asa 5520 configuration to be done from my side to connect to their checkpoint, i have tried creating site to site using cisco ASDM but still unable to connect, is there any specific config for checkpoint to work.. please advise
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
192.230.230.200 is the local IP in the other country, their WAN is 10.10.20.1.
192.168.14.x/24 is my local network and my WAN interface is 62.62.10.1
192.168.14.x/24 is my local network and my WAN interface is 62.62.10.1
ASKER
my local ip range is 192.168.14.x/24 and the remote I have only one IP 192.230.230.200 FTP
I'm using ASDM.