Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
G_W_Albrecht
Legend Legend
Legend

PSK VPN not available for SMBs managed in SMP

A customer has tried to create a VPN S2S using PSK for a VPN to one of his suppliers who only uses PSK. He found that:

  • he is unable to use PSK for VPN community in Plans (not selectable)
  • he is unable to use PSK for VPN in SMB WebGUI (option is greyed out)

I find this kind of strange as:

  • PSK VPN can be configured and used on locally managed SMBs
  • PSK VPN can be configured and used on centrally managed SMBs
  • If locally managed SMBs have PSK VPN configured and running already, PSK VPN tunnel will still work after being connected to SMP Cloud portal
  • SMBs connected to SMP Cloud portal can use PSK VPN when using SMBs CLI for configuration

There must have been some decision to disable this option, and TAC suggested to do a RFE for it - but what is the reason ?

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
7 Replies
PhoneBoy
Admin
Admin

It could also be a bug.
Did you check with TAC?

0 Kudos
G_W_Albrecht
Legend Legend
Legend

Yes - R&D stated it is not supported, but i wait for the details after asking the same as above...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
Lesley
Leader Leader
Leader

Hmmm could this be the limitations that you describe?

https://support.checkpoint.com/results/sk/sk182234

-------
If you like this post please give a thumbs up(kudo)! 🙂
PhoneBoy
Admin
Admin

I read it the same way.
Doesn't answer the question why, unfortunately.

0 Kudos
G_W_Albrecht
Legend Legend
Legend

Here is the answer:

After an internal discussion with the relevant teams, I was informed that implementing this feature requires complex development.

Hence, for this development to be on the roadmap, an RFE should be submitted.

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos
the_rock
Legend
Legend

That certainly answers the concern, though wish it said why its not supported.

0 Kudos
G_W_Albrecht
Legend Legend
Legend

Yes - but as i wrote above, this is only a GUI limit ! If you define the PSK VPN before activationg cloud services or if you use CLI (Plan Script) for configuration, it does work as expected. And i want to know why we have that double GUI limit on PSK...

CCSP - CCSE / CCTE / CTPS / CCME / CCSM Elite / SMB Specialist
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events