This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Don_Paterson
Advisor
Advisor
yesterday

Azure Security Management Server - Status problem - Lost

The R81.20 image/template of the SMS deployed into Azure has a problem (still) with the any new SMS deployed from the Marketplace right now.

It reports a Status as Lost ( Status: Connection with 'cpmgmt' is lost ). Screenshots attached.

I hoped that the new R81.20 image upload on 30th September would fix that but it does not appear to have fixed it.

https://support.checkpoint.com/results/sk/sk132192

Solution Template / Image

Version

Release Date

What's New

R81.20-
images for Gateway & Management

-

30 Sep, 2024
  • Integrated CME Take 279
  • R81.20 New Recommended Jumbo - Take #84
  • Resolved an issue with CloudGuard CME not being pre-installed in Public Cloud Management images B991001648

 

The status does not appear to affect functionality. It did not last time and so far no problem this time.

Screenshot 2024-10-02 151337.png

Screenshot 2024-10-02 143223.png

 

0 Kudos
3 Replies
Nir_Shamir
Employee Employee
Employee
yesterday

Hi,

that's because you are connected for the first time to the Management Server's Public IP and he put that IP in the Management Server Object. The management server can't monitor it's own public IP because it's not attached to it , it's on Azure which is doing the NAT.

To solve it edit the Management Server object and change its IP address to its private IP, which is configured on the instance , and publish the changes. The issue will be resolved.

This won't affect your connectivity to the Management Server through the Public IP.

Don_Paterson
Advisor
Advisor
6 hours ago
In response to Nir_Shamir

Thanks Nir, that has fixed it.
But this is a new issue and I have not seen it in the years before when deploying the SMS into Azure.

Is that documented?
I cannot see anything in Check Point Reference Architecture for Azure or Deploying a Security Management Server (checkpoint.com)

Regards,

Don

 

0 Kudos
Nir_Shamir
Employee Employee
Employee
5 hours ago
In response to Don_Paterson

I don't think it's something new, although I don't remember if it was before R81.20.

bottom line , the Management object is configured with the IP address you are connecting to it in the first time.

with On-Premise we don't usually connect to a NAT IP , because usually you are connecting to the management server from the same network.

in the Cloud it's usually different.

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
UPCOMING CLOUDMATES EVENTS
    All CloudMates Events