This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Sony_James
Participant
Participant
‎2022-11-22 06:26 AM

Checkpoint Bridge mode

Checkpoint Firewall Cluster with OS version R81.10 with Latest Jumbo Hotfix installed

Topology

Internet Router --> L2 Switch (Internet Side)--> Checkpoint in Bridge mode --> Trent Micro IPS -- L2 Switch (LAN Side)

The deployment is successful but we are seeing MAC flapping messages on Internet L2 Switch for Router MAC.

Reason for MAC flap is Router MAC is getting Learned on Checkpoint connected port also. For resolving the issue we put static MAC entry on switch side. 

For troubleshooting the issue we have taken capture on switch Firewall port and switch but we are not able to find the problematic MAC broadcast or ARP reply from Checkpoint interfaces. 

Any suggestion how to troubleshot further

Preview file
21 KB
0 Kudos
2 Replies
Chris_Atkinson
Employee Employee
Employee
‎2022-11-22 07:02 AM

How is the L2 / STP elements of this topology configured?

CCSM R77/R80/ELITE
0 Kudos
Sony_James
Participant
Participant
‎2022-11-22 07:07 AM
In response to Chris_Atkinson

On switch Side STP is enabled and we tried to disable also still same issue.

the switch Interface configured for Checkpoint connectivity is trunk port with Vlan 400 and 100 is passing through it. On checkpoint side we have not configured Vlan interface for bride. we have added physical interface on Checkpoint Bridge 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events