1. Home
    2. /
  2. Manuals
    3. /
  3. Nokia
    4. /
  4. IP45
    5. /
  5. 65
Page 321 / 342 Scroll up to view Page 316 - 320
Frequently Asked Questions
Nokia IP45 Security Platform User’s Guide v4.0
321
±
Check whether you are exceeding the maximum number of computers allowed by your
license. See
“Viewing Active Computers”
on page 252
.
I cannot access http://my.firewall or http://my.vpn. What should I do?
±
Verify that the IP45 is operating (PWR LED is active).
±
Check if the LAN LED for the port that your computer uses is on. If not, check that the
network cable, linking your computer and the IP45 is connected properly.
±
Try surfing to 192.168.1.2 instead of to my.firewall.
Note
192.168.1.2 is the default value, and it might vary if you changed it in the My Network page.
±
Check your TCP/IP configuration according to Chapter 2.
±
Restart the IP45 and your broadband modem by disconnecting the power and reconnecting
after five seconds.
±
If your Web browser is configured to use an HTTP proxy to access the Internet, add
my.firewall or my.vpn to your proxy exceptions list.
Every time I start Internet Explorer, the application searches for an Internet connection.
This is unnecessary, since I am connected through the IP45. What should I do?
For Internet Explorer, versions 5 and 6, do the following:
1.
Open the browser.
2.
On the Tools menu, click Internet Options then click the Connections tab.
3.
For each item in the Dial-up Settings list, do the following:
a.
Select the item.
b.
Select Never dial a connection.
4.
Click Apply.
5.
Click OK.
6.
Close all active browsers and try again.
Every time I start Outlook Express, the application searches for an Internet connection.
This is unnecessary, since I am connected through the IP45. What should I do?
For Outlook Express, versions 5 and 6, do the following:
1.
Open Outlook Express.
2.
On the Tools menu, click Accounts, then click the Mail tab.
3.
For each of the accounts configured in the mail window, do the following:
4.
Click Properties, then click the Connection tab.
5.
Clear the Always connect to this account using check box.
6.
Click OK.
7.
Click Close.
Page 322 / 342
17
Troubleshooting
322
Nokia IP45 Security Platform User’s Guide v4.0
8.
Close all active browsers and try again.
I run a public Web server at home but it cannot be accessed externally, although it is
accessible to the computers on my network. What should I do?
Surf to the security page and use the Servers submenu to allow access to your server.
My network seems extremely slow. What should I do?
±
The Ethernet cables might be faulty. For proper operation, the IP45 requires STP CAT5
(shielded twisted pair category five) ethernet cables. Make sure that this specification is
printed on your cables.
±
Your Ethernet card might be faulty or incorrectly configured. Try replacing your Ethernet
card.
I cannot play a certain network game. What should I do?
±
Turn the IP45 security to Low and try again.
±
If the game still does not work, set the computer you wish to play from to be the DMZ
server.
±
When you are finished playing the game, make sure to clear the DMZ setting, otherwise
your security might be compromised.
I have forgotten my password. What should I do?
Reset the IP45 to factory defaults by using the Reset button as detailed in
“Resetting the IP45
Security Platform to Factory Defaults”
on page 326.This will erase all your settings.
I cannot connect to a VPN site using the IP45 Satellite or the IP45 Tele. What should I do?
Check whether your VPN client has a problem.
Do one of the following:
±
If you are using the IP45 Tele, add the demo Check Point VPN site, using the procedure
“Adding and Editing VPN Sites using the IP45 Tele,” as follows:
±
In the VPN Gateway Address dialog box, enter 207.40.230.20 in the VPN Gateway field.
±
In the VPN Network Configuration dialog box, select Download Configuration.
±
If you are using IP Satellite, add the demo Check Point VPN site, using the procedure
Adding and Editing VPN Sites using the IP45 Tele, as follows:
±
In the Welcome to the VPN Site Wizard dialog box, select Remote Access VPN.
±
In the VPN Gateway Address dialog box, enter 207.40.230.20 in the VPN Gateway field.
±
In the VPN Network Configuration dialog box, select Download Configuration.
±
Log on to the demo site, using vpndemo as your username and password.
±
The Check Point VPN-1 SecuRemote Demo Site should open and inform you that you
successfully created a VPN tunnel.
Page 323 / 342
Frequently Asked Questions
Nokia IP45 Security Platform User’s Guide v4.0
323
I changed the network settings to incorrect values and am unable to correct my error.
What should I do?
Reset the network to its default settings by using the reset button at the rear panel of the IP45
device.
I am using the Nokia IP45 security platform with another DSL/Cable router, and I am having
problems with some applications.
The IP45 performs network address translation (NAT). You can use the IP45 behind another
device that performs NAT, such as a DSL router or wireless router, but the device will block all
incoming connections from reaching your IP45.
To fix this problem, do one of the following. (The solutions are listed in order of preference.)
±
Consider whether you really need the router. You can use the IP45 as a replacement for your
router, unless you need it for some additional functionality that it provides, such as wireless
access.
±
If possible, disable NAT in the router. For instructions on how to do this, see the router's
documentation.
The following suggestions will work only if the router is connected to the WAN port of the IP45:
±
If the router has a DMZ computer option, set it to the IP45 external IP address.
±
Set the router to direct all incoming connections to the external IP address of the IP45.
Keep in mind that if you use the IP45 behind another NAT device, you might lose some of the
advantages of the IP45, such as broad application support and high performance.
I cannot open http://my.firewall page when the LAN address is changed. What should I
do?
Renew the IP address of the computer by using ipconfig.
I cannot connect to the HTTPS server in the DMZ. What should I do?
Ensure that HTTPS access to the device is enabled.
I cannot establish HTTPS session to the device even when the HTTPS access to the device
is permitted. What should I do?
Ensure that the browser supports 128-bit cipher strength.
I cannot send SMTP or POP3 traffic across the Device what should I do?
Do one of the following: (The solutions are listed in order of preference)
±
If antivirus scanning is on, try turning it off.
±
If the antivirus is required, then make sure that the CVP server and SMTP server in the
server page of SMP are correctly configured.
I cannot send HTTP traffic across the IP45. What do I do?
Do one of the following (The solutions are listed in order of preference.):
±
If Web-filtering scanning is on, try turning it off.
±
If the URL filtering is required, then make sure the UFP server in the server page of SMP is
correctly configured.
Page 324 / 342
17
Troubleshooting
324
Nokia IP45 Security Platform User’s Guide v4.0
I cannot connect to SmartCenter FP3 VPN site using the IP45 Satellite X when using
Dynamic IP with certificate support (DAIP). What should I do?
±
Check for the installed certificate in VPN > Certificate.
±
Check for the following error messages in Reports > Event:
I cannot connect to the Check Point SmartCenter FP3 VPN site by using the IP45 Satellite
configured using VPN Communities. What should I do?
Check for the following error messages in Reports > Event Log:
I cannot connect to the IP45 Satellite VPN site by using the IP45 Satellite X. What should I
do?
Check for the following error messages in Reports >Event Log:
Error Message
Verify
Failed to Create VPN
tunnel:client Encrypt
Notification
Ensure that on the FP3 management
station the authentication mechanism
followed is 3DES/SHA1.
Failed to Create VPN
tunnel:could not
validate my certificate
Ensure that the certificate used in the
device is the one associated to the
certificate created for this gateway on
Smart Center FP3.
Failed to Create VPN
tunnel:invalid certificate
Ensure that the certificate used is not
expired.
Failed to Create VPN
tunnel:invalid cert
encoding
Ensure that the certificate used is
PKCS#12 format.
Error Message
Verify
Failed to Create VPN
tunnel: payload
malformed
Ensure that the safe@gateway object
defined for this device at Smart Center
FP3 uses the same shared secret.
Extended
Authentication Failure
Check for the correct username,
password given for the VPN site during
login.
Error Message
Verify
Failed to Create VPN
tunnel: payload malformed
Ensure that both gateways use
the same shared secret.
Failed to Create VPN
tunnel: N/A
Check for the validity of the user
on the remote IP45 gateway.
Page 325 / 342
Frequently Asked Questions
Nokia IP45 Security Platform User’s Guide v4.0
325
I cannot download the certificate. What should I do?
Ensure that the device date and management date matches.
I have a VPN established between my IP45 device and Check Point; I am not able to mount
drives from the server on to the client. The Linux computer behind the Check Point is the
NFS server and the Linux computer behind the IP45 is the NFS client. What should I do?
This problem is caused because of packet fragmentation.
Most of the applications send packets to the network according to the MTU size. The packet size
is determined based on the
rsize
and
wsize
parameters of the NFS; the values being 4k and 8k
respectively. Set the NFS parameters that match the packet size so that no fragmentation occurs.
When I try to save the IKE traces from the IP45 devices, they are being stored in HTML
format instead of .elg format.
This problem is observed only with IE v5.5 and not later versions. Do the following to resolve
this problem:
±
Go to Reports > VPN Tunnels on the IP45 GUI.
±
Click Save IKE Trace tab.
±
On the pop-up window, select save this file to disk.
±
The to be save file format will be HTML.
±
Click Cancel.
±
From the pop-up window, select the option open the file from its current location.
No file is opened and the other option on the pop-up window, save this file to disk gets
automatically selected.
±
Click OK.
The file will be saved as .elg format.
I am unable to access the IP45 GUI through HTTPS. The browser displays an error
message Received a message with incorrect message authentication code. What should I
do?
This problem occurs when you use Netscape Navigator.
Generate and install a new self-signed/CA signed HTTPS certificate to resolve this problem.
Viewing Firmware Status
The firmware is the software program embedded in the IP45.
You can view your current firmware version and additional details.
To view the firmware status, choose Setup from the main menu. The Firmware page opens with
information about the firmware version and other information.

Rate

3.5 / 5 based on 2 votes.

Popular Nokia Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top