This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
AmitS
Explorer
‎2022-12-14 10:58 AM

Checkpoint Gateway not sending logs to sms over wan

Hi Guys,

I have an CMS which is located behind checkpoint gw at Site A.

I have another GW2 at Site B which is managed by CMS at Site A over Internet.

We are not able to view logs of GW2 which is at Site B on the CMS which is at Site A.

I am not sure where the logs are going.

The master file in GW2 has entry with the CMS host name.

Can anyone guide how can i resolve this?

 

Quantum Security Management Quantum Force (Security Gateways) 

Quantum Security Management
Quantum Security Management
Quantum
Quantum Force (Security Gateways)
Quantum Force (Security Gateways)
Security Platforms & Management
0 Kudos
4 Replies
PhoneBoy
Admin
Admin
‎2022-12-14 11:42 AM

Version/JHF level of all components, please.
Does the management server require NAT to be reached by tie Site B gateway?
If so, is such NAT configured in the management object?

The masters file is generally legacy and should not need to be configured.
And if you are going to configure it, you would use the IP address, not the hostname.
Also, you need to perform some additional steps: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

0 Kudos
AmitS
Explorer
‎2022-12-14 11:14 PM
In response to PhoneBoy

Version R81.10 with latest JHF.

Does the management server require NAT to be reached by tie Site B gateway? : We have natted to send the management traffic vis ISP1 from Site A.

 

0 Kudos
PhoneBoy
Admin
Admin
‎2022-12-15 06:46 AM
In response to AmitS

Do not use the word “latest” to specify your JHF level, please specify the exact take number.

What is your precise ISP Redundancy configuration?
Please provide screenshots and explain what your precise goals are with this configuration. 

My guess is that you’ve got an asymmetric routing configuration that’s causing issues (traffic coming in over ISP-2 then going out over ISP-1…or vice versa).
You should be able to confirm this with a tcpdump or fw monitor on the relevant interfaces.
The gateways attempt to connect to the management server on TCP port 257.

0 Kudos
the_rock
Legend
Legend
‎2022-12-15 06:52 AM

Can you see if local log file is growing?

watch -d $FWDIR/log from expert mode

Andy

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events