Create a Post
Showing results for 
Search instead for 
Did you mean: 

Checkpoint Ngx VPN

Hello, I am facing some troubles with a site-to-site VPN between a CheckPoint Ngx and a Sophos UTM firewall.

The vpn uses ike to encrypt the traffic but sometimes it happens that the link is dropped down and it's not bringed back automatically once again.

Seems like both devices are configured as initiator while one of them should be configured in "responder only" mode. I would like to change this settings on the Checkpoint side since the traffic will usually be initiated from Sophos (and so, it needs to be able to initiate the link).

How can I check and/or change this settings inside the Checkpoint appliance?

Thank you.

0 Kudos
1 Reply

I don't believe it's possible to configure us as a responder only, at least for IKE.
I also don't think this is actually relevant to the problem at hand.

If you are, in fact, running NGX code, this code has reached End of Support long, long ago and you should upgrade to a supported release.
That said, if you want to debug the issue, you can try:
0 Kudos


Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events