Slashdot Mirror

← Back to Stories (view on slashdot.org)

Linux FreeS/WAN and Checkpoint Firewall1

Posted by Cliff on from the sharing-the-sandbox dept.

Jsutin asks: "Does anyone have a working FreeS/WAN implementation talking to Checkpoint Firewall1? I've searched through a lot of Linux archives, FreeS/WAN archives, sent people email, and last but not least asked God to help me. And unfortunately all has fallen through! I've run across a few threads here and there that say it can be done but no documents explaining how to do it. I'm trying to push Linux as a VPN gateway for remote offices and would be greatly appreciative if anyone reading this has any suggestions?" "

7 comments

  1. Cool! :) by Cybersonic · · Score: 1

    Getting FreeS/WAN and Firewall-1 shouldnt be to hard... I wasnt aware of the FreeS/WAN project (until now :) , but now i cant want to set it up and test it with Linux! (the coolest advantage of working at a Checkpoint reseller, lots of Nokia based Checkpoint firewall-1 boxes laying around)
    Ill install S/WAN on some redhat boxes here and test it with checkpoint 4.0 and 4.1... (and hopefully Checkpoint Linux someday soon ;)
    - Cybie! aka Ralph Bonnell

    --
    Cybie! aka Ralph Bonnell
  2. How about FreeS/WAN and Cisco PICS by sumner · · Score: 1

    How about getting Free S/WAN working with the new PICS firewall/ipsec machines?

    --
    -- rage, rage against the dying of the light
  3. This is one thread I hope picks up soon by 1010011010 · · Score: 3
    This is a question I, personally, would love to have answered. We use Checkpoint FW/1 on Solaris where I work. It's a bit of a pain to get into the office network from outside (say, via my dialup account from Mindspring) when using Linux. The SecuRemote clients exist only for Windows. If Free S/WAN will let me use my home dialup router/firewall (Linux) machine as a VPN client, yay.

    I hunted through the mail-list archive and found the following: Looking other places (Google, Yahoo, etc), I found this: ... anyone know of anything else?
    --
    Napster-to-go says "Fill and refill your compatible MP3 player", which is a lie. It's not MP3. It's WMA with DRM.
    1. Re:This is one thread I hope picks up soon by Jethro · · Score: 1

      > The SecuRemote clients exist only for Windows.

      Be grateful; at least you have THAT much. I couldn't get the darn thing to work at all, and Checkpoint just stood there and went "Er... we dunno how to set it up either. Manuals? What manuals?".

      We get the thing to FIND our firewall, but then what? Checkpoint don't know. Our eval ran out and they won't give us new ones. I wish I had an alternative before someone spent all the money on their software...

      --


      In the land of the blind, the one-eyed man is kinky.
    2. Re:This is one thread I hope picks up soon by Anonymous Coward · · Score: 0

      Checkpoint won't send you free stuff... It's commercial, damnnit! You'll get support and help only when you'll pay..

  4. Some good info by 1010011010 · · Score: 1

    ... that makes up for Checkpoint's incorrect and incomplete, and sometimes non-existant, documentation: Checkpoint Quick Reference, provided by some guy named "joe".

    --
    Napster-to-go says "Fill and refill your compatible MP3 player", which is a lie. It's not MP3. It's WMA with DRM.
  5. VPN pointer page by Anonymous Coward · · Score: 0

    Here is a VPN Pointer Page that has a IPSec config files for FW-1 & FreeS/WAN Haven't had a chance to test it yet, but I too am very keen to see this work, seeing as we're implmenting FW-1 here & I want to roll out S/WAN Internationally...