- Products
- Learn
- Local User Groups
- Partners
- More
CheckMates Fifth Birthday
Celebrate with Us!
days
hours
minutes
seconds
Join the CHECKMATES Everywhere Competition
Submit your picture to win!
Check Point Proactive support
Free trial available for 90 Days!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
The 2022 MITRE Engenuity ATT&CK®
Evaluations Results Are In!
Now Available: SmartAwareness Security Training
Training Built to Educate and Engage
MITRE ATT&CK
Inside Check Point products!
CheckFlix!
All Videos In One Space
Hello mates,
I have to change the main IP address of a cluster from private address to a public to solve some issues with IKEv2 VPNs using the main address as ID.
Only Main address will be changed, no addresses on any interfaces. Currently used private address is VIP of internal interface, and want to change it to existing VIP of external interface.
What could go wrong with this change? Established S2S VPNs, Remote access VPNs ? Something else?
Thanks!
If this gateway is using Identity Awareness blade and Identity Sharing feature is active, the main ip address is used for the sharing connection (pdpd <-> pepd). If you hit this problem, you can circumvent this by setting the ip address used for these IA sharing connection manually by filling gateways field ia_control_connections_ip with (gui)dbedit. See sk60701 for that.
You should also check the various portal settings (admin, mobile access, user check, identity awareness, etc.) and their certificates.
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY