Begin by configuring the Firewall-1 Policy. Open the Policy Editor on the Firewall-1 Management server and create a new “Workstation” Network Object representing FreeBSD GW.
General Tab:
Set name and IP address
VPN Tab:
Encryption Schemes Defined: IKE ---> Edit
IKE Properties:
Key Negotiation Encryption Methods: 3DES
Authentication Method:
Pre-Shared Secret ---> Edit
Select the Firewall Object and set a pre-shared secret. (Do not use our example.)
Support Aggressive Mode: Checked Supports Subnets: Checked
After setting the pre-shared secret in the Firewall-1 Network Object definition, place this secret in the /usr/local/etc/racoon/psk.txt file on FreeBSD GW. The format for psk.txt is:
208.229.100.6 rUac0wtoo?
| Prev | Home | Next |
| Integration of Check Point VPN-1®/Firewall-1® and FreeBSD IPsec | Firewall-1 VPN Rule Configuration |
This, and other documents, can be downloaded from ftp://ftp.FreeBSD.org/pub/FreeBSD/doc/.
For questions about FreeBSD, read the documentation before contacting <questions@FreeBSD.org>.
For questions about this documentation, e-mail <doc@FreeBSD.org>.