Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
dtrx
Participant

Smart-1 Cloud with 1530 Appliance and Remote Access VPN

Hi There

 

Has anyone experience with Smart-1 Cloud  and 1530 Appliance using Remote Access VPN?

I can manage the box, I can download policies, I can create VPN and all, but there is NO WAY I can connect with Capsual to the box?

I am not sure is it is a license problem, if I NEED mobile access license for it or VPN is enought? I get the message of the certificate when I connect, than END of the story.

Also all the IPs are a bit confusing

The gateway has the IP of 100.100.6.13x (in Smart-1 cloud)
The management has the IP 100.64.0.5x
The real official gateway IP 92.107.40.xxx (ISP Provider)
The real inofficial IP 
 (NAT 1:1) is 192.168.1.128

I do not know if I have to add in the gateway properties IPsec VPN Statically NATed IP which IP? and what is my access point to connect with the Capsual client. All very new, all a bit confusing.

Thanks Oliver

0 Kudos
9 Replies
G_W_Albrecht
Legend
Legend

The IP the GW is seen as from Internet side, "outside"...

CCSE CCTE SMB Specialist
0 Kudos
dtrx
Participant

The problem is that 15xx has a partitial GAIA implementation which does not support Capsual under this circumstances. With endpoint client it should work.

Oliver

G_W_Albrecht
Legend
Legend

Check Point VPN clients
CCSE CCTE SMB Specialist
0 Kudos
Martin_Raska
Advisor

Use the IP of ISP and Endpoint VPN client. I also think that Capsule is not supported on SMB.

0 Kudos
Martin_Raska
Advisor

I meant the Capsule VPN PC version.

0 Kudos
G_W_Albrecht
Legend
Legend

Both Capsule for iOS and Android are supported. You just did mean Check Point Mobile for Windows. but that is not called Capsule at all - only Capsule VPN (for Android) (previously Mobile VPN) and Capsule Connect (for iOS) (previously Mobile VPN).

CCSE CCTE SMB Specialist
0 Kudos
Martin_Raska
Advisor

no, I meant Check Point Capsule VPN for Windows - sk107536

0 Kudos
G_W_Albrecht
Legend
Legend

Sorry, yes - old VPN Win PlugIn. Not supported by SMB, Only L2TP Win Client.

CCSE CCTE SMB Specialist
0 Kudos
G_W_Albrecht
Legend
Legend

Capsule1550.png

You should have 92.107.40.xxx as Server IP in Step 2.

CCSE CCTE SMB Specialist
0 Kudos