This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
HS
Contributor
‎2019-06-27 12:24 AM

Cluster XL error applying policies

Hi,

I'm trying to setup a clusterXL with two checkpoint firewall 12000series.

I'm getting some errors applying policies.

the following error is:

There is only one interface defined for object XXXXX. At least one more interface must be configured for this object in order to use the Anti-Spoofing feature.

At this moment it is affecting all my VSX when we tries a policy installation with virtual IP as Sync.

We have a Sync interface with the name bond0 with topology "this network".

We have Internal Network with the name bond1.29 with topology "this network".

We have mgmt interface with the name mgmt with topology "external" with virtual IP as Private.

All interfaces have anti-spoofing active. If we remove it will should resolved this issue ? do we need to configure other interface, with topology ?

 

Many thanks

 

0 Kudos
2 Replies
PhoneBoy
Admin
Admin
‎2019-06-27 04:06 PM

Please explain what you mean by "policy installation with virtual IP as Sync."
Perhaps screenshots of the relevant objects might be helpful.
0 Kudos
HS
Contributor
‎2019-06-28 02:47 AM
In response to PhoneBoy

Hi,

sorry forget with virtual IP as Sync, bad copy paste.

It is working. The topology wasn't get correct to the management.

After a reboot to the management we were able to get the correct topology.

We have a new firewall cluster but the external interface was not getting on topology and for that reason we were unable to apply policies in others vsx context.

After the reboot and get a again the topology correctly we were able to install policies on the several firewall context

Thank you very much for the help.

 

 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events
    Top