This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
staboi
Participant
‎2023-01-24 02:42 AM

GRE Tunnel log DROP: Received a cleartext packet within an encrypted connection.

Hi experts,

I created tunnel between MikroTik to Check Point using GRE Tunnel. It shows that the traffic was dropped with "Received a cleartext packet within an encrypted connection" warning. 1 thing that I noticed is that I can't set tunnel ID in mikrotik as what checkpoint could. What exactly is the cause of this issue and how to troubleshoot this? Any help would be greatly appreciated.

 

Thank you.

Preview file
116 KB
0 Kudos
2 Replies
G_W_Albrecht
Legend Legend
Legend
‎2023-01-24 02:52 AM

Maybe this helps ? sk169794: GRE Configuration Guide

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Timothy_Hall
Legend Legend
Legend
‎2023-01-24 04:46 AM

If you are receiving that message, the firewall believes based on the src/dst IP addresses of the packet that it should have been sent encrypted from a VPN peer but it wasn't.  You will need to adjust your VPN domains such that the firewall does not believe that traffic should have arrived in a VPN tunnel.  The inspection of the packet and determination whether it should have been encrypted happens before the packet is passed to the Gaia OS between inspection points i-I, so it can't even reach the GRE handling in the Gaia OS.

Attend my 60-minute "Be your Own TAC: Part Deux" Presentation
Exclusively at CPX 2025 Las Vegas Tuesday Feb 25th @ 1:00pm
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events