Hello,
I aimed to establish a connection to the smart console via a site-to-site VPN that is terminated on a Check Point managed by the same Check Point management server. However, I recognize that the CPMI and CPM services are accessed through implied rules. Therefore, I adhered to the documentation and commented out
````
/* #define ENABLE_CPMI */
```
Since my management server is on R82 and firewalls are on R81.20, I had to comment out at below path per documentation
```
/opt/CPR8120CMP-R82/lib/implied_rules.def
```
Subsequently, a particular rule was established for CPMI and CPM services; however, I am still unable to establish a connection via site-to-site VPN.
Currently, if the firewall version matches the management version lets suppose both are on R82 and I modify the $FWDIR/lib/implied_rules.def file, it functions flawlessly. However, this is not the case when the target firewall version is R81.20 or any version other than that of the management server.
Has anyone noticed such an issue before?
Thanks and Regards,
Blason R
CCSA,CCSE,CCCS