Dear Checkpoint Community,
I am experiencing an issue with our VPN setup and would appreciate your assistance. The network topology is as follows:
Location 1:
- Checkpoint 1800 SMB
- Local Users
- Local Servers
Location 2:
- TP-Link Router
- Local Servers
There is a site-to-site VPN established between Location 1 and Location 2, allowing seamless connectivity between the servers and users in these locations.
Issue: Users in Location 1 and the servers in Location 1 can successfully ping/connect to the servers in Location 2 through the site-to-site VPN. However, remote access (RA) VPN users connecting to the Checkpoint firewall at Location 1 are unable to connect to the servers in Location 2.
Steps Taken:
- Verified the RA VPN configuration and connectivity to Location 1 resources.
- Confirmed the site-to-site VPN is operational and allows traffic between Location 1 and Location 2 servers.
- Checked the firewall rules to ensure there are no blocks on traffic from RA VPN users to Location 2 servers.
Despite these steps, RA VPN users still cannot access Location 2 servers. I suspect there might be an issue with the routing or access rules specific to RA VPN users.
Questions:
- Are there any specific settings required in the Checkpoint 1800 SMB to enable RA VPN users to access resources over a site-to-site VPN?
- What additional configurations or troubleshooting steps should I consider to resolve this issue?
Any guidance or suggestions would be greatly appreciated. Thank you in advance for your help!