- Products
- Learn
- Local User Groups
- Partners
-
More
Join Us for CPX 360
23-24 February 2021
Check Point Harmony
Highest Level of Security for Remote Users
Important certificate update to CloudGuard Controller, CME,
and Azure HA Security Gateways
Advanced Protection for
Small and Medium Business
Secure Endpoints from
the Sunburst Attack
Important! R80 and R80.10
End Of Support around the corner (May 2021)
Hello
I have configured PBR towards management subnets through Management interface, where my remote authentication server and other administrative servers existed, apart from that I have default static route as well pointing to other interface. when I try to authenticate the device using remote authentication protocols, it uses the static route rather PBR which is supposed to be preferable than static routes, here my question whether PBR will process this kind of admin traffic originating from the device or something I configured improperly
It would be helpful to understand how you've configured it.
Screenshots or the like would be helpful.
Hello
Please find the configuration for PBR
#################################################################
set pbr table Mgmttraffic static-route X.X.X.0/24 nexthop gateway address GWIP on
set pbr rule priority 1 match from Y.Y.Y.Y/32
set pbr rule priority 1 action table Mgmttraffic
################################################################
Where
X.X.X.0/24 - Managemt Subnet NW
Y.Y.Y.Y - Device Mgmt IP where traffic originates
Can you verify (with tcpdump) the traffic is originating from that IP?
Yes, Its
hostname was wrongly registered with old IP since its new device & configuration has been used from old device
So does that mean the problem is resolved or you are still having the issue?
Yes It was resolved.. thanks for your time
About CheckMates
Learn Check Point
Advanced Learning
WELCOME TO THE FUTURE OF CYBER SECURITY