We have an issue preparing some of our Security Gateways: when we have to use pppoe.
For the context: we use to unset default configuration of Mgmt interface (192.168.1.1) and use the Internet interface as the management interface (> show management interface); so that host name (> show host names) of the firewall as to be the public IP address.
The issue is: we cannot change management interface for the pppoeX interface by this error message:
ourFirewall> set management interface pppoe1
MgmtErr9999 Interface "pppoe1" cannot be set as Management Interface. Management Interface must have an IP address
The configuration of the pppoe client id 1 is:
ourFirewall> show pppoe client id 1
Client User Name:firstname.lastname@example.org
Client Password Hash:*************
Use Peer As Default Gateway:on
Use Peer DNS:on
Use Fake Peer Address:off
Fake Peer Address:0.0.0.0
For those who are not aware of such things :
- changing management interface (> set management interface ethX) will automatically adapt the host name entry of the firewall
- unset the Mgmt default configuration before changing the management interface will delete the hot name entry of the firewall ... and will cause the issue described in 'cpstart' command does not start Check Point services
Does anyone know such problematic ?
We use R77.30, last Jumbo HF
Information Security enthusiast, CISSP, CCSP