- Products
- Learn
- Local User Groups
- Partners
- More
Check Point Jump-Start Online Training
Now Available on CheckMates for Beginners!
Why do Hackers Love IoT Devices so Much?
Join our TechTalk on Aug 17, at 5PM CET | 11AM EST
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
ZTNA Buyer’s Guide
Zero Trust essentials for your most valuable assets
The SMB Cyber Master
Boost your knowledge on Quantum Spark SMB gateways!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hello
I have configured PBR towards management subnets through Management interface, where my remote authentication server and other administrative servers existed, apart from that I have default static route as well pointing to other interface. when I try to authenticate the device using remote authentication protocols, it uses the static route rather PBR which is supposed to be preferable than static routes, here my question whether PBR will process this kind of admin traffic originating from the device or something I configured improperly
It would be helpful to understand how you've configured it.
Screenshots or the like would be helpful.
Hello
Please find the configuration for PBR
#################################################################
set pbr table Mgmttraffic static-route X.X.X.0/24 nexthop gateway address GWIP on
set pbr rule priority 1 match from Y.Y.Y.Y/32
set pbr rule priority 1 action table Mgmttraffic
################################################################
Where
X.X.X.0/24 - Managemt Subnet NW
Y.Y.Y.Y - Device Mgmt IP where traffic originates
Can you verify (with tcpdump) the traffic is originating from that IP?
Yes, Its
hostname was wrongly registered with old IP since its new device & configuration has been used from old device
So does that mean the problem is resolved or you are still having the issue?
Yes It was resolved.. thanks for your time
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY