Hi All,
So we have configured Remote access (IP Sec) and have a strange issue with random packet drops to internal network hosts.
172.16.10.2 is the office mode IP and 192.1.1.5 is the DNS server inside the network.
All the traffic is being forced through the gateway, so no split tunnel..
The client we are using is checkpoint mobile and no mobile access blade enabled.
My VPN domain is manually defined and only includes the 192.1.1.0/24 subnet.
I did come across this when running a debug:
[Expert@FP-CP-VM:0]# fw ctl zdebug + drop | grep 172.16.10.2
@;6537067;[cpu_1];[fw4_2];fw_log_drop_ex: Packet proto=17 172.16.10.2:56289 -> 192.1.1.5:53 dropped by vpn_inbound_tagging_ex Reason: check_userc_tables returns -1;
What exactly does this mean - vpn_inbound_tagging_ex Reason: check_userc_tables returns -1;
Has any one else come across this issue?
I'm still learning my way around checkpoint, so please let me know if you need any additional outputs or information.
Cheers,