This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
ABOUT CHECKMATES & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
RCCO
Participant
‎2020-10-27 12:56 PM

SSL Network Extender Office Mode Remote VPN cannot access DMZ subnets

Hi

I am running the SSL Network Extender with a handful of remote access users on a R80.30 gateway Cluster.

I can authenticate users successfully and they can access internal networked resources as configured by the various policy rules.

I am totally unable to connect to any servers in directly attached subnets though. Anything in one of my DMZ VLAN interfaces is unreachable. I don't even get a hit in the logging that i can use to see if something is allowed or dropped.  I can get a log entry if i was to say ping the VLAN interface or the Cluster VIP but if i ping a server in the subnet, nothing.

I am using Office Mode and a local IP Pool.

Thanks in advance of your help.

0 Kudos
3 Replies
PhoneBoy
Admin
Admin
‎2020-10-27 01:28 PM

That sounds like your DMZ networks aren't included in your Remote Access encryption domain.

0 Kudos
RCCO
Participant
‎2020-10-27 01:34 PM
In response to PhoneBoy

Thanks Phone Boy. That makes sense. I wasn't sure if that applied only to "normal" VPNs.  Where is this configured in SSL Network Extender VPNs?

0 Kudos
RCCO
Participant
‎2020-10-27 01:41 PM
In response to RCCO

It's ok, just found it.

Great! thanks for your help.

0 Kudos