Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Mudderkage
Explorer

Management traffic from gateways to wrong IP

Jump to solution

Hi all,

I have a Check Point 1100 Appliance R75.20 which is sending TCP 18191 and TCP 257 to the R77.30 managers public adress.
My other gateways are talking to the private addresse.

[Expert@brb]# netstat -anl | grep 80.
tcp 0 0 10.x.x.5:40345 80.x.x.250:18191 TIME_WAIT
tcp 0 0 10.x.x.5:35371 80.x.x.251:257 ESTABLISHED


Do anybody have a description/procedure for moving the traffic to the private addresse?
I couldn't find it but it could be caused by my non-english background.

Best regards
Jan

0 Kudos
1 Solution

Accepted Solutions
PhoneBoy
Admin
Admin

I would upgrade those 1100s to the most recent version, which I believe is R77.20.80.
If that doesn't resolve the issue, a TAC case may be necessary.
This will require multiple upgrade steps, as described here: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 

View solution in original post

0 Kudos
4 Replies
PhoneBoy
Admin
Admin

First of all, all versions of code here are End of Support and it's highly recommended you upgrade to supported releases.
You'll probably have to reset SIC in order to change the IP.
If you're not using SmartLSM, I think you can just reset SIC in the gateway object in SmartDashboard to replace Step 1 in this SK: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

0 Kudos
Mudderkage
Explorer

Yes, we have new boxes ready and will 'soon' be on R81.
This task is part of the clean-up before we migrate to the new system.

Thanks a lot for the suggestion.
Actually we have 2 locations running 1100 Appliance with R75.20 
I tried SIC reset on both, but unfortunately it didn't help.
SIC was reestablished and most traffic is sent to managers internal adress, but still some traffic is sent to managers public adress. 

Any other suggestions? 😉

0 Kudos
PhoneBoy
Admin
Admin

I would upgrade those 1100s to the most recent version, which I believe is R77.20.80.
If that doesn't resolve the issue, a TAC case may be necessary.
This will require multiple upgrade steps, as described here: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut... 

View solution in original post

0 Kudos
Mudderkage
Explorer

Ok, then we will just leave it for now.
A part of the upgrade to new boxes and R81 is also to renew these SMB boxes.
Thanks again. 👍

Best regards 
   Jan 

0 Kudos