- Products
- Learn
- Local User Groups
- Partners
-
More
Is the connection subject to NAT and does the issue occur only on Failover or also during policy installation?
Service object:
Join Us for CPX 360
23-24 February 2021
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
How to Remediate Endpoint & VPN
Issues (in versions E81.10 or earlier)
IDC Spotlight -
Uplevel The SOC
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hi,
Can anyone please help to understand how Checkpoint firewall, GRE through traffic handling.
I am getting an issue. GRE is configured on both end route and in between i have CheckPoint firewall.When a fail-over (primary to secondary) occurs, GRE is stop working and then i need to request with network person to bounce the Router GRE terminated physical port. I need to understand CheckPoint GRE through traffic handling, and how it maintain in connection table, i tried to find documents but no luck.
Route --->CheckPoint ---> Router
Chris_Atkinson
Is the connection subject to NAT and does the issue occur only on Failover or also during policy installation?
Service object:
There is no NAT for GRE traffic. But when we did fail-over (Primary to secondary), We need to reset the GRE interface to establish connection. Can you please help to understand how Check Point maintaining state-full fail-over for GRE through traffic.
"Synchronize connection if State Synchronization is enabled on the cluster" is by default enabled for the GRE object.
I know the solution.
But first can you please tell me if you have Primary/Secondary two GREs setup or only Single Tunnel?
Thanks
Amandeep
Hi amdhim0004,
can you please tell me your solution? I have a similar issue with GRE at an R80.30 Cluster.
Thanks!
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY