https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/107900#M4664 <P><SPAN>i have also config the vpn to use the AD server(100.xxx.xxx.21) as&nbsp;</SPAN>Authentication Servers.<STRONG><BR /></STRONG><SPAN>and i am able to log in the vpn client and&nbsp;obtain the 172.16.x.x ip&nbsp;</SPAN><BR /><SPAN>I can ping the 100.xxx.xxx.21 and 100.xx.xx.27, but unable to resolve dns (ping failed).</SPAN></P><P>&nbsp;</P><P><SPAN>so i guess the next step will be adding the dns to firewall dns?<BR />or shall i add a rule that allow all traffic between 172.16.x.x and 100.x.x.x?</SPAN></P> Fri, 15 Jan 2021 08:12:38 GMT KSKC_IT 2021-01-15T08:12:38Z https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/106494#M4596 <P>hi guys I am new to check point and are using&nbsp;Check Point&nbsp;1500 Appliance for my company.<BR />As everyone is working from home, my colleagues would like to access to internal servers remotely.&nbsp;</P><P>I have tried to config it but not very successful.<BR />Remote access is ON with the office mode setting like this.<BR /><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="office_mode_ip.PNG" style="width: 380px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/9952i485FE6364CE554F4/image-dimensions/380x107?v=v2" width="380" height="107" role="button" title="office_mode_ip.PNG" alt="office_mode_ip.PNG" /></span></P><P><BR />I have use the AD server as the Authentication Servers and the simplified network diagram are as below:</P><P><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="network diagram.jpg" style="width: 532px;"><img src="https://community.checkpoint.com/t5/image/serverpage/image-id/9951iA3539D181F3872DC/image-size/large?v=v2&amp;px=999" role="button" title="network diagram.jpg" alt="network diagram.jpg" /></span></P><P><BR />I am able to connect to the firewall using the Checkpoint VPN at home, but unable to reach the internal network.<BR />May I ask what else (like routing, policies) should I config so that I could reach the file server from my home through VPN?</P> Tue, 29 Dec 2020 06:53:12 GMT https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/106494#M4596 KSKC_IT 2020-12-29T06:53:12Z https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/106603#M4597 <P>What shows in the logs when you attempt to access something over the VPN?</P> Wed, 30 Dec 2020 04:54:34 GMT https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/106603#M4597 PhoneBoy 2020-12-30T04:54:34Z https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/107585#M4636 <P>Did you follow 1500 Appliance Series R80.20.15 Locally Managed Administration Guide p.23ff for configuration ?</P> Tue, 12 Jan 2021 11:31:34 GMT https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/107585#M4636 G_W_Albrecht 2021-01-12T11:31:34Z https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/107900#M4664 <P><SPAN>i have also config the vpn to use the AD server(100.xxx.xxx.21) as&nbsp;</SPAN>Authentication Servers.<STRONG><BR /></STRONG><SPAN>and i am able to log in the vpn client and&nbsp;obtain the 172.16.x.x ip&nbsp;</SPAN><BR /><SPAN>I can ping the 100.xxx.xxx.21 and 100.xx.xx.27, but unable to resolve dns (ping failed).</SPAN></P><P>&nbsp;</P><P><SPAN>so i guess the next step will be adding the dns to firewall dns?<BR />or shall i add a rule that allow all traffic between 172.16.x.x and 100.x.x.x?</SPAN></P> Fri, 15 Jan 2021 08:12:38 GMT https://community.checkpoint.com/t5/Spark-Firewall-SMB/Config-VPN-for-remote-access-to-internal-servers/m-p/107900#M4664 KSKC_IT 2021-01-15T08:12:38Z