Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Rakesh_Gupta
Participant

DMZ Port not working for second ISP connection

Checkpoint DMZ port is not working for 2nd ISP connection. When i flipped the ISP connection, it was working fine on WAN port. What step should take to make it work?

7 Replies
G_W_Albrecht
Legend
Legend

Please explain of which HW / SW you are speaking of ! And further details would be very appreciated, too. Afaik only SMB devices have a pre-defined DMZ port, so this should be posted inSMB and SMP

Rakesh_Gupta
Participant

I have Checkpoint 750 SMB product and configuring the ISP as DHCP type.

0 Kudos
Egor_Cherkasov
Contributor

Hello!

As I've understood you are speaking about ISP redundancy, because you want to establish the second connection to the ISP.

There are ISP redundancy configuration steps, check it, because you might be have done a little mistake:

1)Open GW or cluster object properties

2)go to the Other>ISP Redundancy

3)select support ISP Redundancy

4)choose the mode : Load Sharing or Primary/Backup

5)Adding ISP links:

   1.in the ISP links in order of priority click Add

   2.enter the name, interface,next hop IP (it's ISP's IP) 

   3. repeat 1-2 steps to add one more link.   

   4. click OK.

Also if you want to configure DNS proxy ro VPN with ISP Redundancy you needs an addditional configuration.

Hope that will help you.

0 Kudos
G_W_Albrecht
Legend
Legend

Your steps will not work on a  Checkpoint 750 SMB - it has no Dashboard at all 😞 I would rather suggest to check config using Check Point 600/700 Appliances Administration Guide R77.20.80 p.43 !

0 Kudos
Danny
Champion
Champion

Also check out my 1400 Appliance FAQ. It might be well worth the read, though you are using a locally managed 700 appliance model.

0 Kudos
Rakesh_Gupta
Participant

The default DMZ port of Checkpoint 750 appliance is not working with Redundant ISP connection. When ISP connection on WAN port goes down the DMZ Port does not work as redundant internet connection. 

Even if try to get internet directly through the DMZ port, it does not work. 

0 Kudos
PhoneBoy
Admin
Admin

Please explain how you have configured the ISP connections.

Screenshots may be helpful.

Also how did you attempt to "flip" the ISP connection?

0 Kudos