Check Points SecuRemote and Secure Client have dominated the client VPN market and I must say that it rocks. I've been using it at home with my PC for years but am happy to see Mac support finally coming.

PS First Post.

The beta still lacks key features of the SecuRemote and SecureClient product. However, it is an improvement over the non-existant Mac support.

Here are the known problems with the beta client at this point:


1. Inability to define internal networks or any hosts with a subnet other than 255.255.255.255
2. Blowfish encryption algorithm as an ESP transform is not supported by Firewall-1
3. DES_MAC authentication algorithm is not supported by Firewall-1
4. AH is not supported with this client and should not be selected, with or without ESP
5. Firewall-1 4.1 does not support IP Compression
6. Notification is sent after Phase 1 from client to Firewall (this is harmless, but appears in the log viewer.)

The main problem is Item #1. Since it lacks the ability for topology downloads, any internal host that a client wishes to configure, needs to be manually configured as a seperate host. This becomes a huge problem when deploying for 100s of users that need to get to many internal hosts.

The beta client is downloadable from Checkpoint, however, the link doesn't seem to be readily available off of their main beta portion of the web site. I think you need to call Checkpoint directly to get the link.