Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
NorthernNetGuy
Advisor
Jump to solution

How does L2TP VPN affect Mobile desktop Client?

We updated the Clusters L2TP certificate due to changing the name of the cluster object. Now our users using Checkpoint Desktop Mobile client can't access our internal resources without deleting their old VPN profile and creating it again, with the same information (cluster object name not referenced). They can successfully authenticate still, but receive frequent disconnects until they do this profile recreate. We use user credentials for authentication on it

I thought the Mobile access blade desktop client used SSL vpn and wouldn't be affected by changes done to the IPSec VPN blade and its L2TP cert?

0 Kudos
1 Solution

Accepted Solutions
NorthernNetGuy
Advisor

I ended up opening a ticket with support.

It looks like our NAT traversal was set to an unusual port after we disabled and re-enabled the IPSec VPN blade. We changed back to the regular IKE_NAT_TRAVERSAL port 4500, and the issue seems to be resolved.

View solution in original post

2 Replies
G_W_Albrecht
Legend
Legend

Seems rather a strange issue: Checkpoint Desktop Mobile client can't access our internal resources, but can successfully authenticate still, but receive frequent disconnects ?

What reason is given in logs for the frequent disconnects ? Either authentication succeeds or not - everything else is a matter of access rules matching.

CCSE CCTE CCSM SMB Specialist
0 Kudos
NorthernNetGuy
Advisor

I ended up opening a ticket with support.

It looks like our NAT traversal was set to an unusual port after we disabled and re-enabled the IPSec VPN blade. We changed back to the regular IKE_NAT_TRAVERSAL port 4500, and the issue seems to be resolved.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events