Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
EspenH
Participant

Remote Access ipv6

Hi,

I am setting up a Endpoint VPN solution with Checkpoint. It needs to be force tunneling. 

Problem is that ipv6 does not go through the forced tunnel so when a computer gets ipv6 public ip it can basicilly bypass the tunnel..

Anyone know if there is a solution for this?

 

0 Kudos
5 Replies
G_W_Albrecht
Champion
Champion

sk163313 R80.30 IPv6 features and limitations says:

The following VPN features are not supported for IPv6:

  • Remote Access VPN
  • Wire Mode VPN
0 Kudos
PhoneBoy
Admin
Admin

If you're using the full Endpoint client, it's firewall can block IPv6 entirely.
Beyond that, the Remote Access clients don't currently support IPv6.
0 Kudos
EspenH
Participant

Anyone know if this will be supported in the future?

PhoneBoy
Admin
Admin

I assume it will be supported in the future.
If you have this requirement, I recommend engaging with your local Check Point office.

0 Kudos
514numbers
Participant

I found a new solution that has just come out and tested / works as expected. No need for desktop policy / policy server or higher end VPN remote access product.

There is a new feature within the trac_client_1.ttm and supported on E84.50+ client ( easy to automatic upgrade ). This feature doesn't require the policy server desktop firewall.

We tested this and it works.

ref sk75221 ( attribute is on SK )

allow_ipv6 / string / Blocks or allows IPv6 traffic to the client / true / false / client_decide / false E80.50

0 Kudos