This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
jyrbn
Participant
‎2025-04-15 08:07 PM
Jump to solution

Mobile Access Blade greyed out on Centrally Managed SMB 1600

Hi, 

We are trying to configure remote access VPN on our centrally managed SMB 1600 and are encountering an issue where the option to route all traffic to the Gateway on the Endpoint client is greyed out. 

I've found an SK (sk101239) regarding this and found that there is a setting in Global Properties that needs to be configured to route all traffic from remote clients through the gateway. 

Our issue is that this setting is not available to us when opening Global Properties. Check box to enable Mobile Access is also greyed out. (Image for reference)

 
 
 

GlobalProp.png

We need to route the traffic of the remote clients through the gateway because they can only access some of our Cloud resources using the Public IP of our gateway. 

Any ideas?

0 Kudos
1 Solution

Accepted Solutions
Wolfgang
Authority
Authority
‎2025-04-15 10:17 PM
In response to jyrbn
Jump to solution

@jyrbn what you need is called hub mode. Please follow sk101239 - Route all traffic from Remote Access clients, including internet traffic, through Securit... You have to enable this setting under the client section you are using

2025-04-16 07_15_02-Clipboard.png

View solution in original post

5 Replies
PhoneBoy
Admin
Admin
‎2025-04-15 08:59 PM
Jump to solution

IPsec VPN OR Mobile Access Blade supports Remote Access clients.
Mobile Access Blade is only required for the web portal, which is not supported on SMB appliances.

I just posted screenshot of the necessary settings to force Hub Mode here: https://community.checkpoint.com/t5/Remote-Access-VPN/Split-Tunnel-Domain-group/m-p/246548/highlight...
These were taken in R81.20 Management.
Are you saying these same settings don’t exist in your management in the same place?

0 Kudos
jyrbn
Participant
‎2025-04-15 09:21 PM
In response to PhoneBoy
Jump to solution

The setting on the screenshot you sent is already enabled but we still can't modify VPN tunneling on the Mobile Client. 

av.png

 

Screenshot 2025-04-16 121330.png

The setting that I was looking for or referring to was the one mentioned in sk101239.

In the Basic Configuration part, step 1.D.


 

0 Kudos
Wolfgang
Authority
Authority
‎2025-04-15 10:17 PM
In response to jyrbn
Jump to solution

@jyrbn what you need is called hub mode. Please follow sk101239 - Route all traffic from Remote Access clients, including internet traffic, through Securit... You have to enable this setting under the client section you are using

2025-04-16 07_15_02-Clipboard.png

jyrbn
Participant
‎2025-04-15 10:49 PM
In response to Wolfgang
Jump to solution

Thanks!

I was looking at the gateway object properties my mistake. 

0 Kudos
the_rock
Legend
Legend
‎2025-04-15 09:21 PM
Jump to solution

Check out below link, it would appear its not supported for MAB. I know its for 1490, but same is valid for 1600 and 1800.

Andy

https://community.checkpoint.com/t5/SMB-Gateways-Spark/Mobile-Access-Blade-on-a-Centrally-managed-SM...

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events