Hey guys! I have the following issue.
Remote Access VPN with Check Point Mobile connects just fine and even pings are sucessfull to internal network but nothing else. SSH is not working to any internal network device as well as http/https or any other protocol.
It started to happen after I had configured a new subinterface with public IP (we changed one of our ISP). Initially I noticed "TCP out of state" messages in logs when traffic went from internal network --> VPN client. I disabled the option to drop TCP out of state packets and now logs are showing that everything is ok (only that address spoofing is detected but it is configured to not drop that kind of traffic). But situations stays the same. Firewall rules are ok and no other change was made.
Now the interesting thing. If I install a policy even when no change is made - it starts working. It also starts working after exactly 1 hour VPN client was connected without any additional move.
I assume there might be an issue with TCP connections table and maybe TCP session timeout (set to 3600 sec) somehow involved but have no idea how to solve that.
Resume :
Pings are working through VPN but nothing else. Everything starts working after empty policy installation or after 1 hour after VPN client was connected.
We run 4400 in cluster (Active/Standby) and the software is 77.30. Appreciate for any advice!