This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
rozkie20
Contributor
a month ago

IPsec tunnel use private IP to negotia

Hello Checkmates,

We have recently set up a Site-to-Site VPN for our Quantum Spark deployment to replace the Internet Leased Line. We are using two CP1555 gateways in centrally managed mode. One gateway (Local Gateway) connects to the SMS using a private IP (10.17.30.6), and the other gateway (Remote Gateway) connects to the SMS using a public IP.

Both sites are still connected through an Internet Leased Line.

During the initial VPN setup, both gateways use the correct public IPs for negotiation. However, once we disable the Leased Line routes, after about 30 minutes the Local Gateway starts using its private IP to negotiate with the Remote Gateway. As a result, the VPN tunnel comes up initially but then goes down after approximately 30 minutes.

In Link Selection, we have already selected the public IP, but we do not understand why the gateway still switches to the private IP for VPN negotiation.

Anyone have experience about this issue can you share with me to fix.

Preview file
45 KB
Preview file
89 KB
0 Kudos
1 Reply
AkosBakos
MVP Silver
MVP Silver
a month ago

Hi,

Maybe it is a trivial answer, but when an interface become down, the assigned routes will be off. 

Compare the two routing table (when works, and when not)

Akos

----------------
\m/_(>_<)_\m/
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events