Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Dor_Marcovitch
Advisor
Jump to solution

disable vpn client from updating the site ip address

hey,

 

how can i disable the client from updating the gateway ip on the vpn site once it connects to the gateway ? 

0 Kudos
1 Solution

Accepted Solutions
RS_Daniel
Advisor

Hello,

Try using that APN VIP on remote access link selection config:

Configuring VPN Link Selection for Remote Access client (checkpoint.com)

Regards

View solution in original post

(1)
4 Replies
G_W_Albrecht
Legend Legend
Legend

Why would you have to do this ? Is the client unwilling to work over RA VPN and boycotts it by changing the site IP ? I would just sack em...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Dor_Marcovitch
Advisor

we have multiple APNs configured as External Interface, and event one with VIP on different subnet, what happens is that the client update the GW IP to one of the APN that the SIM of the client does not belongs to.

one time i even got the "private ip" of the interface with the VIP on different subnet.

VPN Clients comes only from one APN to one VIP of the FW so i want to harden this configuration.

0 Kudos
RS_Daniel
Advisor

Hello,

Try using that APN VIP on remote access link selection config:

Configuring VPN Link Selection for Remote Access client (checkpoint.com)

Regards

(1)
Dor_Marcovitch
Advisor

thanks, this is what i was looking for, i will try this configuration

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events