Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Franktum
Contributor

SIC certificate expired

Hi:

Today we realized the SIC certificate expired in 4 out of 3 gateways. In this SK you can read this certificates should be renewed automatically at the 75% threshold (Scenario 4) (https://support.checkpoint.com/results/sk/sk97691). The first thing we thought is the ports were closed but it doesn't seem so. Telnets from SMS to one gateway:

[Expert@SMS:0]# telnet 192.168.217.81 18191
Trying 192.168.217.81...
Connected to 192.168.217.81.
Escape character is '^]'.


[Expert@SMS:0]# telnet 192.168.217.81 18192
Trying 192.168.217.81...
Connected to 192.168.217.81.
Escape character is '^]'.

 

There is no connection to the 18210 and 18211 ports because the gateways are not listening on them:

[Expert@Gateway]# netstat -punta | grep 1821
[Expert@Gateway]#

 

SMS is R81.20 Take 41, gateways in R81.10 Take 130.

We'll reset the SIC manually but want to know why the SIC certificates weren't renewed automatically.

 

P.D. In Global properties > Firewall, Accept control connections option is enabled.

Any ideas?

Thanks in advanced

Regards

0 Kudos
1 Reply
G_W_Albrecht
Legend
Legend

I would ask CP TAC !

CCSE CCTE CCSM SMB Specialist
0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events