This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Nigel_Dennison1
Participant
‎2018-02-28 03:58 AM
Jump to solution

Custom encryption domain on local managed SMB

Good morning

I wonder if any one has come across this before. We have a customer running an SMB 1400 firewall with remote access VPN users. The customer has a secondary IP address range forwarded to the gateway by the ISP. They currently use this secondary range for external NAT IP's. Because the the secondary range is not defined on the interface configuration or the routing table remote access users are not forwarding traffic through the VPN to the firewall and are instead going via the internet to the secondary IP range. 

In a fully managed gateway this would be easy to resolve by adding the secondary IP range into the remote access VPN encryption domain but I do not see that functionality in the locally managed SMB device. Does any one know of a work around for this or is the only answer to go to a fully managed SMB device. 

Regards

Nigel

0 Kudos
1 Solution

Accepted Solutions
Neil_ZInk
Collaborator
‎2018-02-28 06:20 AM
Jump to solution

have you tried manually defining the encryption domain?

Remote Access - Advance -> Local Encryption domain is define  .. (default is automatic)

there is a similar settings for Site to Site  VPNS

It may not help but it is worth a try.

View solution in original post

0 Kudos
2 Replies
Neil_ZInk
Collaborator
‎2018-02-28 06:20 AM
Jump to solution

have you tried manually defining the encryption domain?

Remote Access - Advance -> Local Encryption domain is define  .. (default is automatic)

there is a similar settings for Site to Site  VPNS

It may not help but it is worth a try.

0 Kudos
Nigel_Dennison1
Participant
‎2018-02-28 09:15 AM
In response to Neil_ZInk
Jump to solution

Yup that worked a treat. 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫